SeverityMODERATE
Repositoryopenclaw/openclaw
PublishedApr 7, 2026, 6:15 PM
Ref12bd6b7bb944da7c3ca142636bf51350c4c715c1
Advisory summary
OpenClaw: Zalo replay dedupe keys could suppress messages across chats or senders
Curator analysis
Synopsis
Zalo webhook replay filtering uses a dedupe key that is not scoped by chat or sender, so legitimate events with reused message IDs from different conversations or senders can be misclassified as duplicates and suppressed.
Vulnerability classes
replay deduplication collisionavailability
Sink hints
extensions/zalo/src/monitor.webhook.ts
This file contains the Zalo webhook replay check and the dedupe-cache key construction that the fix changes to include chat and sender identity.
extensions/zalo/src/monitor.webhook.test.ts
The added regression tests show the intended security boundary: same-origin replays should dedupe, but different chats or different senders with the same message ID must not collide.
Expected components
Zalo webhook replay dedupewebhook event processing
Model scores(5)
openai/gpt-5.4excellent
95.00View trace
Target Alignment
29
Source To Sink Reasoning
28
Impact And Exploitability
19
Evidence Quality
9
Overclaim Control
10
z-ai/glm-5.1excellent
92.00View trace
Target Alignment
29
Source To Sink Reasoning
28
Impact And Exploitability
18
Evidence Quality
9
Overclaim Control
8
google/gemini-3.1-pro-previewexcellent
87.00View trace
Target Alignment
29
Source To Sink Reasoning
27
Impact And Exploitability
15
Evidence Quality
9
Overclaim Control
7
anthropic/claude-opus-4.6partial
78.00View trace
Target Alignment
27
Source To Sink Reasoning
23
Impact And Exploitability
16
Evidence Quality
5
Overclaim Control
7
moonshotai/kimi-k2.5partial
63.00View trace
Target Alignment
21
Source To Sink Reasoning
18
Impact And Exploitability
13
Evidence Quality
5
Overclaim Control
6