CVE-2026-41299

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.3.28

Description An authorization bypass exists in the 'chat.send' gateway method. The issue occurs because ACP-only provenance fields are gated by self-declared client metadata from the WebSocket handshake instead of a verified authorization state. This allows authenticated operator clients to spoof ACP identity labels and inject reserved provenance fields intended exclusively for the ACP bridge by manipulating client metadata during the connection process.

Recommendations Update to version 2026.3.28.