CVE-2026-32028

描述

### Summary In OpenClaw `<= 2026.2.24`, Discord direct-message reaction notifications did not consistently apply the same DM authorization checks (`dmPolicy` / `allowFrom`) that are enforced for normal DM message ingress. In restrictive DM setups, a non-allowlisted Discord user who can react to a bot-authored DM message could still enqueue a reaction-derived system event in the session. This is a reaction-only ingress inconsistency. By itself it does not directly execute commands; practical impact depends on downstream automation/tool policy. ### Details The DM message path already enforces `dmPolicy`/`allowFrom` authorization, but the DM reaction-notification path previously allowed event enqueue under reaction mode checks without that same authorization gate. Fix in `main` aligns reaction ingress with normal message preflight for Discord DM/group-DM/guild policy boundaries and applies equivalent DM reaction authorization hardening for Slack to keep channel behavior consistent. ### Affected Packages / Versions - `npm` package: `openclaw` - Affected: `<= 2026.2.24` - Patched: `>= 2026.2.25` ### Fix Commit(s) - `aedf62ac7e669a89c7b299201bf6537dc6b12e0e` ### Release Process Note `patched_versions` is pre-set to the release (`2026.2.25`) so after npm release the advisory is published. Thanks @tdjackey for reporting.

受影響套件(1)

• npm/openclawfrom 0, < 2026.2.25

CVSS 分數

參考連結(5)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2026-32028
• PATCHhttps://github.com/openclaw/openclaw
• WEBhttps://github.com/openclaw/openclaw/commit/aedf62ac7e669a89c7b299201bf6537dc6b12e0e
• WEBhttps://github.com/openclaw/openclaw/security/advisories/GHSA-354r-7mfh-7rh2
• WEBhttps://www.vulncheck.com/advisories/openclaw-missing-authorization-check-in-discord-dm-reaction-ingress