CVE-2026-26326
Received Received - Intake
Information Disclosure in OpenClaw Skills.status Exposes Secrets

Publication date: 2026-02-19

Last updated on: 2026-02-23

Assigner: GitHub, Inc.

Description
OpenClaw is a personal AI assistant. Prior to version 2026.2.14, `skills.status` could disclose secrets to `operator.read` clients by returning raw resolved config values in `configChecks` for skill `requires.config` paths. Version 2026.2.14 stops including raw resolved config values in requirement checks (return only `{ path, satisfied }`) and narrows the Discord skill requirement to the token key. In addition to upgrading, users should rotate any Discord tokens that may have been exposed to read-scoped clients.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-19
Last Modified
2026-02-23
Generated
2026-06-16
AI Q&A
2026-02-20
EPSS Evaluated
2026-06-14
NVD
CVE-2026-26326
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openclaw openclaw to 2026.2.14 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-200 The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

The vulnerability in OpenClaw, a personal AI assistant, involves the `skills.status` feature prior to version 2026.2.14. It could inadvertently disclose secret information to clients with `operator.read` permissions by returning raw resolved configuration values in `configChecks` for skill requirements that need configuration (`requires.config`). This means sensitive data could be exposed to unauthorized users.

The issue was fixed in version 2026.2.14 by stopping the inclusion of raw resolved config values in requirement checks, instead returning only the path and whether the requirement is satisfied. Additionally, the Discord skill requirement was narrowed to only expose the token key.

Impact Analysis

This vulnerability can lead to unauthorized disclosure of secret or sensitive configuration data to clients who only have read access (`operator.read`). Such exposure could compromise security by leaking tokens or other confidential information, potentially allowing attackers to misuse these secrets.

Users who may have had Discord tokens exposed should rotate those tokens to prevent misuse.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

To mitigate this vulnerability, you should upgrade OpenClaw to version 2026.2.14 or later.

Additionally, rotate any Discord tokens that may have been exposed to read-scoped clients to prevent unauthorized access.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-26326. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart