Description
OpenClaw before 2026.5.7 contains a privilege escalation vulnerability in the Matrix allowFrom feature that allows authenticated accounts to match policy entries through mutable display name metadata. Attackers with the ability to change display names can receive agent access intended for another Matrix identity, potentially gaining unauthorized permissions depending on operator configuration.
Published: 2026-06-11
Score: 7.7 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

OpenClaw versions prior to 2026.5.7 are vulnerable because the Matrix allowFrom feature lets authenticated users modify display name metadata. An attacker who can change a display name can cause the system to match policy entries intended for another Matrix identity, effectively gaining agent access that was not originally authorized. This flaw can allow an attacker to obtain higher privileges than permitted, potentially exposing sensitive data or control over the system. The weakness is identified as CWE‑290, representing an authentication or authorization issue that leads to improper validation of user credentials.

Affected Systems

The affected product is OpenClaw from the OpenClaw vendor. Versions earlier than 2026.5.7 are impacted; no further version specifics are provided.

Risk and Exploitability

The vulnerability carries a CVSS score of 7.7, indicating high severity. EPSS data is not available and the issue is not listed in the CISA KEV catalog, suggesting that exploitation is not currently observed at scale. The probable attack vector requires an authenticated account with write access to display names within the Matrix allowFrom configuration. Once such an account is compromised or misused, the attacker can manipulate the display name to match an existing policy entry, thereby obtaining unintended agent-level permissions. Given the high CVSS score and the administrative‑level impact, the risk of severe privilege escalation is significant.

Generated by OpenCVE AI on June 11, 2026 at 21:53 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade OpenClaw to version 2026.5.7 or later to remove the vulnerability.
  • If an upgrade is not immediately possible, disable or tightly restrict the ability for authenticated users to modify display names in the Matrix allowFrom feature.
  • Review and tighten operator configuration to ensure that agent access privileges are granted only to the intended identities and remove any unnecessary permissions.

Generated by OpenCVE AI on June 11, 2026 at 21:53 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 11 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.5.7 contains a privilege escalation vulnerability in the Matrix allowFrom feature that allows authenticated accounts to match policy entries through mutable display name metadata. Attackers with the ability to change display names can receive agent access intended for another Matrix identity, potentially gaining unauthorized permissions depending on operator configuration.
Title OpenClaw < 2026.5.7 - Privilege Escalation via Mutable Display Names in Matrix allowFrom
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-290
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 7.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-11T20:07:29.035Z

Reserved: 2026-06-10T21:14:38.834Z

Link: CVE-2026-53811

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-11T21:16:23.167

Modified: 2026-06-11T21:16:23.167

Link: CVE-2026-53811

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-11T22:00:08Z

Weaknesses
  • CWE-290

    Authentication Bypass by Spoofing