Medium severity5.3NVD Advisory· Published Apr 23, 2026· Updated Apr 28, 2026
CVE-2026-41351
CVE-2026-41351
Description
OpenClaw before 2026.3.31 contains a replay detection bypass vulnerability in webhook signature handling that treats Base64 and Base64URL encoded signatures as distinct requests. Attackers can re-encode Telnyx webhook signatures to bypass replay detection while maintaining valid signature verification.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
openclawnpm | < 2026.3.31 | 2026.3.31 |
Affected products
1Patches
1ad7766605465fix(voice-call): canonicalize Telnyx replay request keys (#57829)
2 files changed · +42 −1
extensions/voice-call/src/webhook-security.test.ts+39 −0 modified@@ -393,6 +393,45 @@ describe("verifyTelnyxWebhook", () => { expectReplayResultPair(first, second); }); + it("treats Base64 and Base64URL signatures as the same replayed request", () => { + const { publicKey, privateKey } = crypto.generateKeyPairSync("ed25519"); + const pemPublicKey = publicKey.export({ format: "pem", type: "spki" }).toString(); + const timestamp = String(Math.floor(Date.now() / 1000)); + const rawBody = JSON.stringify({ + data: { event_type: "call.initiated", payload: { call_control_id: "call-1" } }, + nonce: crypto.randomUUID(), + }); + const signedPayload = `${timestamp}|${rawBody}`; + const signature = crypto.sign(null, Buffer.from(signedPayload), privateKey).toString("base64"); + const urlSafeSignature = signature.replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/g, ""); + const first = verifyTelnyxWebhook( + { + headers: { + "telnyx-signature-ed25519": signature, + "telnyx-timestamp": timestamp, + }, + rawBody, + url: "https://example.com/voice/webhook", + method: "POST" as const, + }, + pemPublicKey, + ); + const second = verifyTelnyxWebhook( + { + headers: { + "telnyx-signature-ed25519": urlSafeSignature, + "telnyx-timestamp": timestamp, + }, + rawBody, + url: "https://example.com/voice/webhook", + method: "POST" as const, + }, + pemPublicKey, + ); + + expectReplayResultPair(first, second); + }); + it("returns a stable request key when verification is skipped", () => { const ctx = { headers: {},
extensions/voice-call/src/webhook-security.ts+3 −1 modified@@ -534,6 +534,8 @@ export function verifyTelnyxWebhook( try { const signedPayload = `${timestamp}|${ctx.rawBody}`; const signatureBuffer = decodeBase64OrBase64Url(signature); + // Canonicalize equivalent Base64/Base64URL encodings before replay hashing. + const canonicalSignature = signatureBuffer.toString("base64"); const key = importEd25519PublicKey(publicKey); const isValid = crypto.verify(null, Buffer.from(signedPayload), key, signatureBuffer); @@ -548,7 +550,7 @@ export function verifyTelnyxWebhook( return { ok: false, reason: "Timestamp too old" }; } - const replayKey = `telnyx:${sha256Hex(`${timestamp}\n${signature}\n${ctx.rawBody}`)}`; + const replayKey = `telnyx:${sha256Hex(`${timestamp}\n${canonicalSignature}\n${ctx.rawBody}`)}`; const isReplay = markReplay(telnyxReplayCache, replayKey); return { ok: true, isReplay, verifiedRequestKey: replayKey }; } catch (err) {
Vulnerability mechanics
Generated by null/stub on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
6- github.com/openclaw/openclaw/commit/ad77666054651c1fd77b1dc60fd6a8db6600a29anvdPatchWEB
- github.com/advisories/GHSA-37v6-fxx8-xjmxghsaADVISORY
- github.com/openclaw/openclaw/security/advisories/GHSA-37v6-fxx8-xjmxnvdVendor AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2026-41351ghsaADVISORY
- www.vulncheck.com/advisories/openclaw-webhook-replay-detection-bypass-via-base64-signature-re-encodingnvdThird Party AdvisoryWEB
- github.com/openclaw/openclaw/releases/tag/v2026.3.31ghsaWEB
News mentions
0No linked articles in our index yet.