CVE-2026-32039

Description

### Summary `channels.*.groups.*.toolsBySender` could match a privileged sender policy using a colliding mutable identity value (for example `senderName` or `senderUsername`) when deployments used untyped keys. The fix introduces explicit typed sender keys (`id:`, `e164:`, `username:`, `name:`), keeps legacy untyped keys on a deprecated ID-only path, and adds regression coverage to prevent cross-identifier collisions. ### Affected Packages / Versions - Package: npm `openclaw` - Affected versions: `<= 2026.2.21-2` - Latest published npm version at triage time (February 22, 2026): `2026.2.21-2` - Patched version (planned next release): `2026.2.22` ### Impact This is a sender-authorization bypass in group tool policy matching for deployments that use `toolsBySender` with untyped keys. Under those conditions, an attacker could inherit stronger tool permissions intended for another sender if they can force an identifier collision. ### Fix Commit(s) - `5547a2275cb69413af3b62c795b93214fe913b57` ### Release Process Note `patched_versions` is pre-set to the planned next release (`2026.2.22`). Once that npm release is published, this advisory should only need publishing. OpenClaw thanks @jiseoung for reporting.

How to fix CVE-2026-32039

To remediate CVE-2026-32039, upgrade the affected package to a fixed version below.

—upgrade to 2026.2.22 or later

Is CVE-2026-32039 being exploited?

Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

from 0, < 2026.2.22

CVSS scores

osv	CVSS 4.0	—	CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N
osv	CVSS 3.1	MEDIUM5.9	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:N