CVE-2026-28450 in OpenClaw
Summary
by MITRE • 03/06/2026
OpenClaw versions prior to 2026.2.12 with the optional Nostr plugin enabled expose unauthenticated HTTP endpoints at /api/channels/nostr/:accountId/profile and /api/channels/nostr/:accountId/profile/import that allow reading and modifying Nostr profiles without gateway authentication. Remote attackers can exploit these endpoints to read sensitive profile data, modify Nostr profiles, persist malicious changes to gateway configuration, and publish signed Nostr events using the bot's private key when the gateway HTTP port is accessible beyond localhost.
Once again VulDB remains the best source for vulnerability data.
Analysis
by VulDB Data Team • 03/11/2026
The vulnerability identified as CVE-2026-28450 affects OpenClaw versions prior to 2026.2.12 when the optional Nostr plugin is enabled. This security flaw represents a critical authentication bypass issue that exposes sensitive HTTP endpoints to unauthenticated remote access. The affected endpoints /api/channels/nostr/:accountId/profile and /api/channels/nostr/:accountId/profile/import operate without proper authentication mechanisms, creating a significant attack surface for malicious actors who can exploit these weaknesses to gain unauthorized access to Nostr profile information. The vulnerability specifically targets the gateway configuration and authentication layers within the OpenClaw system, which is designed to facilitate Nostr protocol interactions while maintaining security boundaries.
The technical implementation of this vulnerability stems from insufficient access controls within the Nostr plugin module of OpenClaw. When the gateway HTTP port is accessible beyond localhost, the system fails to enforce proper authentication checks before allowing operations on Nostr profile endpoints. This design flaw allows attackers to perform both read and write operations on profile data without requiring valid credentials or authorization tokens. The vulnerability manifests as a direct consequence of weak authentication enforcement, which aligns with CWE-285: Improper Authorization, and represents a failure in implementing proper access control mechanisms for API endpoints. The exposed endpoints function as entry points for unauthorized manipulation of Nostr protocol data, potentially enabling attackers to modify profile information and establish persistent malicious configurations.
The operational impact of this vulnerability extends beyond simple data exposure to encompass full profile manipulation capabilities and potential gateway compromise. Remote attackers can exploit these endpoints to read sensitive Nostr profile data, modify profile information, and persist malicious changes to the gateway configuration. The most concerning aspect of this vulnerability is the ability to publish signed Nostr events using the bot's private key when the gateway HTTP port is accessible beyond localhost. This capability enables attackers to impersonate legitimate Nostr users and potentially compromise the integrity of the entire Nostr network connected through the vulnerable OpenClaw gateway. The attack surface is further expanded by the fact that these endpoints remain accessible even when the gateway is configured to accept external connections, making the vulnerability exploitable in production environments.
Security mitigations for this vulnerability should focus on implementing proper authentication and authorization controls for all exposed API endpoints. The immediate solution involves enforcing mandatory authentication checks before allowing access to Nostr profile endpoints, ensuring that only authorized users or systems can perform operations on these resources. Network segmentation and firewall rules should be implemented to restrict access to the gateway HTTP port, preventing external exposure of these vulnerable endpoints. The system should also enforce proper input validation and sanitization for all profile data to prevent injection attacks, while implementing rate limiting and monitoring to detect suspicious activities. Organizations should consider implementing the principle of least privilege by restricting access to these endpoints to specific authorized users or systems only, and should regularly audit access logs to identify potential unauthorized access attempts. The remediation process should include updating to OpenClaw version 2026.2.12 or later, which contains the necessary authentication fixes and security enhancements. This vulnerability demonstrates the importance of proper access control implementation and aligns with ATT&CK technique T1078: Valid Accounts and T1566: Phishing, as attackers can leverage the exposed endpoints to establish persistent access and manipulate system configurations.