Description
OpenClaw before 2026.3.22 contains a privilege escalation vulnerability in the device.pair.approve method that allows an operator.pairing approver to approve pending device requests with broader operator scopes than the approver actually holds. Attackers can exploit insufficient scope validation to escalate privileges to operator.admin and achieve remote code execution on the Node infrastructure.
Published: 2026-04-09
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Immediate Patch
AI Analysis

Impact

An OpenClaw version before 2026.3.22 contains a privilege‑escalation flaw in the device.pair.approve feature. The code fails to validate that the operator.approver's scopes cover the requested device pairing, allowing an approver to grant pairings with scopes higher than the operator actually holds. This scope bypass can elevate an operator’s rights to operator.admin, giving the attacker the ability to execute arbitrary code on the underlying Node infrastructure. The weakness corresponds to CWE‑648, improper authorization.

Affected Systems

OpenClaw instances running any release earlier than 2026.3.22 are affected. The vulnerability impacts the OpenClaw application itself, which is deployed on Node.js environments, and relies on the device.pair.approve API. Users of the OpenClaw product should verify the deployment version and ensure it is updated to 2026.3.22 or later.

Risk and Exploitability

The CVSS score of 8.7 indicates a high severity, and although the EPSS score is unavailable, the vulnerability is known to be exploitable via the device.pair.approve endpoint. Since it is not listed in CISA’s KEV catalog, there is no confirmed field‑of‑view data yet, but the lack of proper scope validation suggests that an attacker who can trigger the approve action—such as through an authenticated session or API call—can gain elevated privileges. This makes the vulnerability relatively easy to exploit in any environment where an operator with pairing approval rights also has network access to the API.

Generated by OpenCVE AI on April 9, 2026 at 22:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update to OpenClaw 2026.3.22 or newer
  • If an upgrade cannot be performed immediately, enforce strict validation of scopes when approving device pairings and restrict operator.pairing approver roles to only the scopes they truly need
  • Monitor application logs for unauthorized or excessive device pairing approvals
  • Review and patch any custom code that interacts with the device.pair.approve API to ensure proper authorization checks are in place

Generated by OpenCVE AI on April 9, 2026 at 22:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-hf68-49fm-59cq OpenClaw Gateway: RCE and Privilege Escalation from operator.pairing to operator.admin via device.pair.approve
History

Tue, 14 Apr 2026 04:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 09 Apr 2026 21:45:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.3.22 contains a privilege escalation vulnerability in the device.pair.approve method that allows an operator.pairing approver to approve pending device requests with broader operator scopes than the approver actually holds. Attackers can exploit insufficient scope validation to escalate privileges to operator.admin and achieve remote code execution on the Node infrastructure.
Title OpenClaw < 2026.3.22 - Privilege Escalation via device.pair.approve Scope Validation
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-648
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-04-14T03:11:11.176Z

Reserved: 2026-04-04T12:30:33.463Z

Link: CVE-2026-35639

cve-icon Vulnrichment

Updated: 2026-04-14T03:11:06.190Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-09T22:16:33.317

Modified: 2026-04-15T16:51:14.437

Link: CVE-2026-35639

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-10T09:28:23Z

Weaknesses