CVE-2026-62206

Summary

OpenClaw versions before 2026.6.9 contain a missing authorization vulnerability in Discord moderation actions. In affected versions, a lower-trust caller or configured input path could perform moderation actions that should have required a stronger authorization or policy check. Practical impact depends on the operator's configuration and whether lower-trust input can reach the affected path.

Affected Software

VendorProductVersion RangeStatus
OpenClawOpenClaw0 < 2026.6.9affected
OpenClawOpenClaw2026.6.9unaffected

Weaknesses

  • CWE-862: Missing Authorization

References