Description
OpenClaw before 2026.3.25 contains a privilege escalation vulnerability in gateway-authenticated plugin HTTP routes that incorrectly mint operator.admin runtime scope regardless of caller-granted scopes. Attackers can exploit this scope boundary bypass to gain elevated privileges and perform unauthorized administrative actions.
Published: 2026-04-10
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation
Action: Immediate Patch
AI Analysis

Impact

The vulnerability allows an attacker to bypass authentication checks in the gateway‑authenticated plugin and receive a privileged operator.admin scope, even if the caller has no such rights. This incorrect scope assignment is a form of privilege escalation that lets the attacker perform unauthorized administrative actions. The weakness is identified as CWE‑648: Improper Authorization.

Affected Systems

The flaw affects OpenClaw software from all versions prior to 2026.3.25. The product is distributed by OpenClaw and is typically deployed in Node.js environments. Any installation that uses the gateway‑authenticated plugin HTTP routes is at risk unless it has been upgraded to version 2026.3.25 or later.

Risk and Exploitability

The CVSS score of 8.7 indicates high severity. Exploitation is likely achievable through HTTP requests to the gateway plugin, requiring legitimate authentication to access the route; the bug then grants admin privileges regardless of original scopes. EPSS data is not available, so the probability of exploitation cannot be quantified, and the vulnerability is not yet listed in the CISA KEV catalog, but the high severity warrants prompt action.

Generated by OpenCVE AI on April 10, 2026 at 17:36 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade OpenClaw to version 2026.3.25 or later, which fixes the privilege escalation bug.
  • If an immediate upgrade is not feasible, verify that gateway‑plugin routes are restricted to trusted users and monitor for any unauthorized administrative activity.
  • Check the OpenClaw website or security advisories for any patches or updates if using older versions.

Generated by OpenCVE AI on April 10, 2026 at 17:36 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-qm2m-28pf-hgjw OpenClaw: Gateway Plugin HTTP Auth Grants Unrestricted operator.admin Runtime Scope to All Callers
History

Tue, 14 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 10 Apr 2026 16:30:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.3.25 contains a privilege escalation vulnerability in gateway-authenticated plugin HTTP routes that incorrectly mint operator.admin runtime scope regardless of caller-granted scopes. Attackers can exploit this scope boundary bypass to gain elevated privileges and perform unauthorized administrative actions.
Title OpenClaw < 2026.3.25 - Privilege Escalation via Gateway Plugin HTTP Authentication Scope
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-648
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-04-14T14:27:24.570Z

Reserved: 2026-04-04T12:32:50.476Z

Link: CVE-2026-35669

cve-icon Vulnrichment

Updated: 2026-04-14T14:27:20.592Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-10T17:17:09.240

Modified: 2026-04-13T21:06:24.390

Link: CVE-2026-35669

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-13T13:00:33Z

Weaknesses