CVE-2026-28449

Description

### Summary When Nextcloud Talk webhook signing was valid, replayed requests could be accepted without durable replay suppression, allowing duplicate inbound processing after replay-window expiry or process restart. ### Details OpenClaw's Nextcloud Talk webhook path verified `HMAC(secret, random + body)` but previously lacked durable replay state tied to webhook events. This allowed replay of a previously valid signed request in some operational conditions. The fix on `main` adds: - persistent per-account replay dedupe for Nextcloud Talk webhook events, - replay checks before webhook side effects (`onMessage`), - backend-origin validation against configured account base URL (when configured). ### Impact A captured valid signed webhook request could be replayed to trigger duplicate inbound handling. This is an integrity/availability issue (duplicate actions/noise), scoped to deployments using Nextcloud Talk webhook integration. ### Affected Packages / Versions - Package: `openclaw` (npm) - Affected: `<= 2026.2.24` - Patched in release: `2026.2.25` ### Fix Commit(s) - `d512163d686ad6741783e7119ddb3437f493dbbc` ### Release Process Note `patched_versions` is pre-set to the release (`2026.2.25`) so once npm release `2026.2.25` is published, advisory is now published. OpenClaw thanks @aristorechina for reporting.

How to fix CVE-2026-28449

To remediate CVE-2026-28449, upgrade the affected package to a fixed version below.

• —upgrade to 2026.2.25 or later

Is CVE-2026-28449 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 2026.2.25

CVSS scores

References (5)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2026-28449
• PATCHgithub.com/openclaw/openclaw
• WEBgithub.com/openclaw/openclaw/commit/d512163d686ad6741783e7119ddb3437f493dbbc
• WEBgithub.com/openclaw/openclaw/security/advisories/GHSA-r9q5-c7qc-p26w