Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
Unauthorized People Can Download and Save Media from Telegram
GHSA-h656-5vcf-cm23
Summary
A security issue in the OpenClaw software allowed unauthorized people to download and save media from Telegram messages before checking if they had permission to do so. This could have allowed unauthorized access to sensitive information. To fix this, update to the latest version of OpenClaw, which is OpenClaw 2026.2.24.
What to do
- Update openclaw to version 2026.2.24.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | openclaw | <= 2026.2.23 | 2026.2.24 |
Original title
OpenClaw: Unauthorized Telegram Senders Trigger Media Download and Disk Write Before Access Check
Original description
## Impact
In Telegram DM mode, inbound media was downloaded and written to disk before sender authorization checks completed. An unauthorized sender could trigger inbound media download/write activity (including media groups) even when DM access should be denied.
## Affected Packages / Versions
- Package: `openclaw` (npm)
- Latest published version currently affected: `2026.2.23`
- Vulnerable range: `<= 2026.2.23`
- Patched in planned next release: `2026.2.24`
## Fix Commit(s)
- `9514201fb9b51de5d0b23151110d0ff5d9c8bd67`
## Technical Details
The Telegram handler flow now enforces DM authorization before media download/write paths execute, including media-group handling. Inbound channel activity tracking was also moved to run after DM authorization in the Telegram message context path.
## Release Process Note
`patched_versions` is pre-set to the planned next release (`2026.2.24`). After npm publish, the advisory can be published without further version-field edits.
OpenClaw thanks @v8hid for reporting.
### Publication Update (2026-02-25)
`[email protected]` is published on npm and contains the fix commit(s) listed above. This advisory now marks `>= 2026.2.24` as patched.
In Telegram DM mode, inbound media was downloaded and written to disk before sender authorization checks completed. An unauthorized sender could trigger inbound media download/write activity (including media groups) even when DM access should be denied.
## Affected Packages / Versions
- Package: `openclaw` (npm)
- Latest published version currently affected: `2026.2.23`
- Vulnerable range: `<= 2026.2.23`
- Patched in planned next release: `2026.2.24`
## Fix Commit(s)
- `9514201fb9b51de5d0b23151110d0ff5d9c8bd67`
## Technical Details
The Telegram handler flow now enforces DM authorization before media download/write paths execute, including media-group handling. Inbound channel activity tracking was also moved to run after DM authorization in the Telegram message context path.
## Release Process Note
`patched_versions` is pre-set to the planned next release (`2026.2.24`). After npm publish, the advisory can be published without further version-field edits.
OpenClaw thanks @v8hid for reporting.
### Publication Update (2026-02-25)
`[email protected]` is published on npm and contains the fix commit(s) listed above. This advisory now marks `>= 2026.2.24` as patched.
Vulnerability type
CWE-208
CWE-404
CWE-406
CWE-770
Allocation of Resources Without Limits
Published: 3 Mar 2026 · Updated: 7 Mar 2026 · First seen: 6 Mar 2026