<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Qqbot - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/tags/qqbot/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Fri, 17 Jul 2026 02:27:19 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/tags/qqbot/feed.xml" rel="self" type="application/rss+xml"/><item><title>OpenClaw Authorization Flaw in QQBot Exec Approvals (CVE-2026-62217)</title><link>https://feed.craftedsignal.io/briefs/2026-07-openclaw-auth-flaw/</link><pubDate>Fri, 17 Jul 2026 02:27:19 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-openclaw-auth-flaw/</guid><description>An authorization flaw (CVE-2026-62217, CWE-863) in OpenClaw versions 2026.5.14-beta.1 before 2026.5.27 allows lower-trust callers or non-allowlisted senders to execute or persist unauthorized operations via the QQBot exec approvals feature, potentially leading to privilege escalation and system compromise.</description><content:encoded><![CDATA[<p>An authorization bypass vulnerability, identified as CVE-2026-62217, has been discovered in OpenClaw versions 2026.5.14-beta.1 prior to 2026.5.27. This flaw affects the QQBot exec approvals feature. When this feature is enabled and reachable, it fails to properly validate the authorization of callers or configured input paths. Consequently, a lower-trust entity or an un-allowlisted sender can perform actions that exceed their intended permissions, leading to unauthorized operations. This vulnerability bypasses core security controls, enabling potential privilege escalation, unauthorized data manipulation, or the establishment of persistence mechanisms within the affected OpenClaw environment. The vulnerability was published on July 17, 2026, and poses a significant risk to organizations using vulnerable OpenClaw installations.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li><strong>Vulnerable Component Identification</strong>: An attacker identifies an OpenClaw instance running version 2026.5.14-beta.1 to 2026.5.26, where the QQBot exec approvals feature is enabled and network reachable.</li>
<li><strong>Request Crafting</strong>: The attacker crafts a malicious request designed to interact with the QQBot exec approvals feature. This request originates from a lower-trust caller or a configured input path that would normally be restricted.</li>
<li><strong>Authorization Bypass</strong>: Due to the authorization flaw (CWE-863), the OpenClaw application incorrectly processes the crafted request, failing to enforce proper permission checks for the sender.</li>
<li><strong>Unauthorized Execution Attempt</strong>: The application interprets the request as if it originated from a fully authorized entity.</li>
<li><strong>Action Execution</strong>: The application executes the actions specified in the attacker's request, which are beyond the legitimate scope of the original caller's authorization.</li>
<li><strong>Persistence or Privilege Escalation</strong>: The attacker leverages the unauthorized execution to perform actions such as running arbitrary commands, modifying configurations, or establishing persistence mechanisms, effectively escalating privileges or maintaining unauthorized access.</li>
<li><strong>Impact on System</strong>: The attacker successfully compromises the integrity and confidentiality of the OpenClaw environment by performing unauthorized operations, potentially leading to full system control.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>A successful exploitation of CVE-2026-62217 grants unauthorized entities the ability to execute or persist actions beyond their intended authorization. This means that non-allowlisted senders can perform malicious operations, leading to privilege escalation, data compromise, or the installation of persistent backdoors within the OpenClaw environment. While no specific victim numbers or targeted sectors are mentioned in the advisory, any organization utilizing vulnerable OpenClaw versions with the QQBot exec approvals feature enabled is at risk of significant security breaches, potentially impacting data integrity, confidentiality, and system availability.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li><strong>Patch CVE-2026-62217 immediately</strong>: Upgrade OpenClaw installations to version 2026.5.27 or later to address the authorization flaw in the QQBot exec approvals feature.</li>
<li><strong>Monitor QQBot Exec Approvals logs</strong>: Implement enhanced logging and monitor system logs for OpenClaw's QQBot exec approvals feature for any unauthorized or unusual activity, specifically looking for executions originating from lower-trust callers or un-allowlisted senders.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>authorization-bypass</category><category>cve</category><category>openclaw</category><category>qqbot</category><category>privilege-escalation</category><category>vulnerability</category></item></channel></rss>