CVE-2026-53860
Awaiting Analysis Awaiting Analysis - Queue

Sender Policy Bypass in OpenClaw BlueBubbles via Metadata Spoofing

Vulnerability report for CVE-2026-53860, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-06-16

Last updated on: 2026-06-16

Assigner: VulnCheck

Description

OpenClaw before 2026.5.7 contains a sender policy bypass vulnerability in BlueBubbles that allows participants to match allowlist entries through conversation metadata rather than stable sender identity. Attackers can influence conversation-level identifiers to receive agent responses intended for configured senders, potentially bypassing access controls.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-16
Last Modified
2026-06-16
Generated
2026-07-07
AI Q&A
2026-06-16
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 3 associated CPEs
Vendor Product Version / Range
bluebubbles openclaw to 2026.5.7 (exc)
openclaw openclaw to 2026.5.7 (exc)
bluebubbles bluebubbles to 2026.5.7 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-807 The product uses a protection mechanism that relies on the existence or values of an input, but the input can be modified by an untrusted actor in a way that bypasses the protection mechanism.
CWE-863 The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-53860 is a sender policy bypass vulnerability in the BlueBubbles component of OpenClaw versions before 2026.5.7. It allows attackers to manipulate conversation metadata, such as conversation-level identifiers, to bypass the sender allowlist. Instead of relying on a stable sender identity, the vulnerability lets attackers match allowlist entries through mutable conversation metadata, potentially receiving responses intended for authorized senders without proper authentication.

Compliance Impact

The vulnerability allows attackers to bypass access controls by manipulating conversation metadata to receive responses intended for authorized senders. This incorrect authorization could potentially lead to unauthorized disclosure of information.

Such unauthorized access to information may impact compliance with standards and regulations that require strict access controls and protection of sensitive data, such as GDPR and HIPAA.

However, the practical impact on compliance depends on the operator's configuration, the sensitivity of the data involved, and whether the vulnerable feature is enabled and accessible.

Detection Guidance

This vulnerability involves manipulation of conversation-level identifiers in the BlueBubbles component of OpenClaw before version 2026.5.7. Detection would focus on identifying unusual or unauthorized changes to conversation metadata or identifiers that could indicate attempts to bypass sender allowlists.

Since the vulnerability is related to mutable conversation metadata used for authorization, monitoring logs for unexpected changes in conversation identifiers or agent responses sent to unintended recipients could help detect exploitation attempts.

No specific detection commands or network signatures are provided in the available resources.

Impact Analysis

This vulnerability can allow unauthorized participants to receive agent responses that were intended only for configured and authorized senders. By bypassing access controls through manipulated conversation metadata, attackers may gain access to information or interactions not meant for them. The practical impact depends on the operator's configuration and whether untrusted inputs can reach the vulnerable feature. If exploited, it could lead to information disclosure or unauthorized access within affected BlueBubbles groups.

Mitigation Strategies

To mitigate the sender policy bypass vulnerability in OpenClaw's BlueBubbles component, you should immediately upgrade to version 2026.5.7 or later where the issue is patched.

  • Prefer stable sender identifiers over mutable conversation metadata.
  • Restrict BlueBubbles groups until the patch is applied.
  • Narrow channel and tool allowlists to limit exposure.
  • Avoid sharing Gateways between untrusted users.
  • Disable the affected BlueBubbles feature if it is not necessary.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53860. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart