CVE
GHSA-5r8f-96gm-5j6g
OpenClaw Gateway `operator.write` can reach admin-only session reset via `chat.send` `/reset`
Summary
The chat.send path reused command authorization to trigger /reset session rotation even though direct session reset is an admin-only control-plane operation.
Impact
A write-scoped gateway caller could rotate a target session, archive the prior transcript state, and force a new session id without admin scope.
Affected Component
src/gateway/server-methods/chat.ts, src/auto-reply/reply/session.ts
Fixed Versions
- Affected:
<= 2026.3.24 - Patched:
>= 2026.3.28 - Latest stable
2026.3.28contains the fix.
Fix
Fixed by commit be00fcfccb (Gateway: align chat.send reset scope checks).
Package Versions Affected
Package Version
patch Availability
No items found.
Automatically patch vulnerabilities without upgrading
Fix Without Upgrading
Detect compatible fix
Apply safe remediation
Fix with a single pull request
CVSS Version
Severity
Base Score
CVSS Version
Score Vector
C
H
U
-
C
H
U
0
-
C
H
U
7.1
-
3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L
Related Resources
No items found.
References
https://github.com/openclaw/openclaw/security/advisories/GHSA-5r8f-96gm-5j6g, https://github.com/openclaw/openclaw/commit/be00fcfccba108f88dc3d4380146c6e058770b03, https://github.com/openclaw/openclaw, https://github.com/openclaw/openclaw/releases/tag/v2026.3.28
Basic Information
Ecosystem
