OpenClaw before 2026.3.31 contains an authentication bypass vulnerability where unauthenticated plugin-auth HTTP routes receive operator runtime write scopes. A…

OpenClaw versions before 2026.3.31 contain a critical authentication bypass vulnerability in plugin-auth HTTP routes. The vulnerability allows unauthenticated attackers to access routes that improperly receive operator runtime write scopes. This enables unauthorized users to perform privileged runtime actions that should only be available to authenticated operators. The issue represents a complete bypass of authentication controls for sensitive administrative functions. Multiple security advisories and patches have been released to address this critical security flaw.