<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Qclaw - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/vendors/qclaw/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Wed, 03 Jan 2024 12:00:00 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/vendors/qclaw/feed.xml" rel="self" type="application/rss+xml"/><item><title>OpenClaw Matrix Profile Config Persistence Vulnerability</title><link>https://feed.craftedsignal.io/briefs/2024-01-openclaw-config-persistence/</link><pubDate>Wed, 03 Jan 2024 12:00:00 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2024-01-openclaw-config-persistence/</guid><description>A vulnerability in the openclaw npm package before version 2026.4.10 allows unauthorized modification of Matrix profile configurations via the `operator.write` message tool.</description><content:encoded><![CDATA[<p>A critical vulnerability exists in versions of the <code>openclaw</code> npm package prior to 2026.4.10. The vulnerability stems from insufficient access control within the gateway's <code>operator.write</code> message-tool paths. These paths inadvertently provide access to Matrix profile persistence functions that are intended to be restricted to administrator-level privileges. This means that attackers could potentially modify sensitive Matrix profile configurations without proper authorization. The vulnerability was addressed in version 2026.4.10 and subsequent releases, with <code>openclaw@2026.4.14</code> incorporating the fix. This issue was reported and resolved with contributions from multiple security researchers and sponsors, highlighting its potential impact on affected systems.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>An attacker gains access to a system with the vulnerable <code>openclaw</code> package installed.</li>
<li>The attacker crafts a malicious <code>operator.write</code> message intended to exploit the exposed Matrix profile persistence functionality.</li>
<li>The crafted message bypasses intended access controls due to the vulnerability.</li>
<li>The malicious message reaches the vulnerable Matrix profile persistence component.</li>
<li>The component processes the message without proper authorization checks.</li>
<li>The attacker modifies sensitive Matrix profile configurations, such as user permissions or system settings.</li>
<li>The modified configuration persists across system restarts due to the compromised persistence mechanism.</li>
<li>The attacker leverages the modified profile configuration to escalate privileges or gain unauthorized access to sensitive data.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>Successful exploitation of this vulnerability could allow attackers to gain unauthorized control over Matrix profile configurations. This could lead to privilege escalation, unauthorized access to sensitive data, and potential disruption of service. While the exact scope of potential victims is unknown, any system running a vulnerable version of the <code>openclaw</code> package is at risk. This could impact various sectors relying on the package for their operations.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Immediately upgrade the <code>openclaw</code> npm package to version 2026.4.10 or later to remediate the vulnerability.</li>
<li>Monitor npm package installations and updates within your environment to detect and prevent the use of vulnerable versions of <code>openclaw</code>.</li>
<li>Implement strict access controls and input validation on message-tool paths to prevent unauthorized access to sensitive functionalities.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>npm</category><category>vulnerability</category><category>persistence</category></item></channel></rss>