CVE-2026-32053

Summary

OpenClaw versions prior to 2026.2.23 contain a vulnerability in Twilio webhook event deduplication where normalized event IDs are randomized per parse, allowing replay events to bypass manager dedupe checks. Attackers can replay Twilio webhook events to trigger duplicate or stale call-state transitions, potentially causing incorrect call handling and state corruption.

Affected Software

VendorProductVersion RangeStatus
OpenClawOpenClaw0 < 2026.2.23affected
OpenClawOpenClaw2026.2.23unaffected

Weaknesses

  • CWE-294: CWE-294 Authentication Bypass by Capture-replay

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References