{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-34509", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "REJECTED", "assignerShortName": "VulnCheck", "dateReserved": "2026-03-30T13:51:47.549Z", "datePublished": "2026-03-31T11:17:22.786Z", "dateUpdated": "2026-04-01T13:50:47.687Z", "dateRejected": "2026-04-01T13:50:47.687Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-04-01T13:50:47.687Z"}, "rejectedReasons": [{"lang": "en", "value": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority."}]}], "x_generator": {"engine": "Vulnogram 1.0.1"}}}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-31T13:27:27.601Z"}, "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-34509", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-31T13:27:23.777425Z"}}}], "title": "CISA ADP Vulnrichment"}], "cna": {"title": "OpenClaw < 2026.3.8 - Sender Allowlist Bypass in Microsoft Teams Plugin via Route Allowlist Configuration", "credits": [{"lang": "en", "type": "reporter", "value": "Peng Zhou (@zpbrent)"}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 2.3, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "LOW", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "OpenClaw", "product": "OpenClaw", "versions": [{"status": "affected", "version": "0", "lessThan": "2026.3.8", "versionType": "semver"}, {"status": "unaffected", "version": "2026.3.8", "versionType": "semver"}], "packageURL": "pkg:npm/openclaw", "defaultStatus": "unaffected"}], "datePublic": "2026-03-11T00:00:00.000Z", "references": [{"url": "https://github.com/openclaw/openclaw/security/advisories/GHSA-g7cr-9h7q-4qxq", "name": "GitHub Security Advisory (GHSA-g7cr-9h7q-4qxq)", "tags": ["third-party-advisory"]}, {"url": "https://github.com/openclaw/openclaw/commit/88aee9161e0e6d32e810a25711e32a808a1777b2", "name": "Patch Commit", "tags": ["patch"]}, {"url": "https://www.vulncheck.com/advisories/openclaw-sender-allowlist-bypass-in-microsoft-teams-plugin-via-route-allowlist-configuration-2", "name": "VulnCheck Advisory: OpenClaw < 2026.3.8 - Sender Allowlist Bypass in Microsoft Teams Plugin via Route Allowlist Configuration", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "vulncheck"}, "descriptions": [{"lang": "en", "value": "OpenClaw before 2026.3.8 contains a sender allowlist bypass vulnerability in its Microsoft Teams plugin that allows unauthorized senders to bypass intended authorization checks. When a team/channel route allowlist is configured with an empty groupAllowFrom parameter, the message handler synthesizes wildcard sender authorization, permitting any sender in the matched team/channel to trigger replies in allowlisted Teams routes."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-863", "description": "CWE-863: Incorrect Authorization"}]}], "cpeApplicability": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*", "vulnerable": true, "versionEndExcluding": "2026.3.8"}], "operator": "OR"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-31T17:58:59.365Z"}}}, "cveMetadata": {"cveId": "CVE-2026-34509", "state": "PUBLISHED", "dateUpdated": "2026-03-31T17:58:59.365Z", "dateReserved": "2026-03-30T13:51:47.549Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2026-03-31T11:17:22.786Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority."}], "id": "CVE-2026-34509", "lastModified": "2026-04-01T14:16:54.560", "metrics": {}, "published": "2026-03-31T12:16:30.840", "references": [], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Rejected"}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,2026.3.8)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "2026.3.8"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "OpenClaw", "source": "cna", "vendor": "OpenClaw"}, "product": "openclaw", "vendor": "openclaw"}], "analysis": {"en": {"generated_at": "2026-03-31T12:22:29.678369+00:00", "value": {"mitigation_remediation": ["Upgrade OpenClaw to version 2026.3.8 or later"], "summary": {"action": "Patch", "impact": "Unauthorized sender access via allowlist bypass"}, "threat_synthesis": {"affected_systems": "The vulnerability affects the OpenClaw application (OpenClaw OpenClaw) on all installations using a Microsoft Teams plug\u2011in. Versions prior to 2026.3.8 are impacted; all later releases are considered fixed.", "description_and_impact": "OpenClaw versions prior to 2026.3.8 contain a flaw in the Microsoft Teams plug\u2011in that allows a sender allowlist to be bypassed. When a team or channel route allowlist is configured with an empty groupAllowFrom field, the message handler creates a wildcard sender authorization. This enables any sender belonging to the matched team/channel to trigger bot replies in allowlisted Teams routes, effectively lifting the intended authorization controls. The weakness is a classic authorization bypass (CWE-863). The consequence is that unauthorized users can gain access to restricted bot interactions, potentially leaking sensitive information or disrupting team workflows. The impact is limited to users who can send messages within the affected Teams channels but could be significant if those channels contain confidential data.", "risk_and_exploitability": "The CVSS score is 2.3, indicating a low severity. No EPSS score is available and the issue is not listed in CISA's KEV catalog. The attack requires the ability to send messages in a Microsoft Teams channel that is routed by the OpenClaw plug\u2011in. The likely attack vector is a user\u2011initiated message in an improperly configured Teams channel; therefore the exploit is feasible with standard user privileges in the target environment. While the risk is low, the potential for data exposure or unauthorized bot interaction warrants attention."}}}}, "created": "2026-03-31T19:54:59.264332+00:00", "updated": "2026-03-31T20:38:53.382919+00:00", "vendors": ["openclaw", "openclaw$PRODUCT$openclaw"]}