CVE-2026-32028

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.25

Description OpenClaw versions prior to 2026.2.25 do not consistently enforce dmPolicy and allowFrom authorization checks on Discord direct-message reaction notifications. This allows users not included in the allowlist to enqueue reaction-derived system events. Attackers can exploit this inconsistency by reacting to bot-authored direct messages to bypass authorization restrictions and potentially trigger downstream automation or tool policies. The issue relates to an inconsistency in authorization checks between normal direct message ingress and reaction-notification paths. The fix aligns reaction ingress with normal message preflight for Discord DM/group-DM/guild policy boundaries.

Recommendations Update OpenClaw to version 2026.2.25 or later.