CVE ID :CVE-2026-31991 Published : March 19, 2026, 2:16 a.m. | 1 hour, 6 minutes ago Description :OpenClaw versions prior to 2026.2.26 contain an authorization bypass vulnerability where Signal group allowlist policy incorrectly accepts sender identities from DM pairing-store approvals. Attackers can exploit this boundary weakness by obtaining DM pairing approval to bypass group allowlist checks and gain unauthorized group access. Severity: 3.7 | LOW Visit the link for more details, such as CVSS details, affected products, timeline, and more...