Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.
8.4

OpenClaw: Unsecured Session Access in Subagents

GHSA-wcxr-59v9-rxr8
Summary

A security issue in OpenClaw allowed a subagent to access or modify sessions outside its own scope. This could have exposed sensitive data or let an unauthorized party make unwanted changes. To fix this, update to OpenClaw version 2026.3.11 or later.

What to do
  • Update openclaw to version 2026.3.11.
Affected software
VendorProductAffected versionsFix available
– openclaw <= 2026.3.8 2026.3.11
Original title
`OpenClaw: session_status` let sandboxed subagents access parent or sibling session state
Original description
### Summary

The built-in `session_status` tool did not enforce the intended session-visibility boundary. A sandboxed subagent could supply another session's `sessionKey` and inspect or modify state outside its own sandbox scope.

### Impact

This allowed a sandboxed child session to read parent or sibling session data and, in affected releases, update the target session's persisted model override.

### Affected versions

`openclaw` `<= 2026.3.8`

### Patch

Fixed in `openclaw` `2026.3.11` and included in later releases such as `2026.3.12`. Session visibility checks now enforce the sandbox boundary before reading or mutating session state.
ghsa CVSS3.1 8.4
Vulnerability type
CWE-863 Incorrect Authorization
Published: 13 Mar 2026 · Updated: 14 Mar 2026 · First seen: 13 Mar 2026