anonhaven
Ad

CVE-2026-35635

MEDIUM CVSS 4.0: 6.3 EPSS 0.04%
Updated Apr 09, 2026
Synology
Parameter Value
CVSS 6.3 (MEDIUM)
Affected Versions before 2026.3.22
Type CWE-706
Vendor Synology
Public PoC No

OpenClaw before 2026.3.22 contains a webhook path route replacement vulnerability in the Synology Chat extension that allows attackers to collapse multi-account configurations onto shared webhook paths. Attackers can exploit inherited or duplicate webhook paths to bypass per-account DM access control policies and replace route ownership across accounts.

Attack Parameters

Attack Vector
Network
Can be exploited remotely
Attack Complexity
High
Difficult to exploit
Attack Requirements
Present
Additional conditions required
Privileges Required
None
No privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
Low
Partial data leak
Integrity
Low
Partial data modification
Availability
None
No disruption

CVSS Vector v4.0

Weakness Type (CWE)

CWE-706

References 4

https://github.com/openclaw/openclaw/commit/630f1479c44f78484dfa21bb407cbe6f171…
disclosure@vulncheck.com
https://github.com/openclaw/openclaw/commit/980940aa58f862da4e19372597bbc2a9f26…
disclosure@vulncheck.com
https://github.com/openclaw/openclaw/security/advisories/GHSA-rqp8-q22p-5j9q
disclosure@vulncheck.com
https://www.vulncheck.com/advisories/openclaw-webhook-path-route-replacement-vu…
disclosure@vulncheck.com
Share Post Share Share Share

Related Vulnerabilities

CVE-2021-47961

Synology

8.1

CVE-2021-47960

Synology

6.5

CVE-2026-31998

Synology

8.3

CVE-2026-3091

Synology

6.7

CVE-2024-47266

Synology

2.7