Description
OpenClaw before 2026.5.18 contains an insufficient provenance validation vulnerability in node event handling that allows paired nodes to forge exec lifecycle events without system.run authorization. A malicious or compromised paired node can send crafted node.event messages to the gateway, steering target sessions into exec-event paths that expose capabilities the reduced node surface should not provide.
Published: 2026-06-11
Score: 8.6 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

OpenClaw versions before 2026.5.18 allow an insufficient provenance validation check in node event handling. A malicious or compromised paired node can forge exec lifecycle events and send crafted node.event messages to the gateway, redirecting target sessions into exec-event paths that provide capabilities beyond what the reduced node surface is intended to expose. This flaw permits the attacker to execute privileged operations without the required system.run authorization, effectively granting unauthorized code execution on the target.

Affected Systems

Any deployment running OpenClaw before version 2026.5.18 is affected. The vulnerability exists in the OpenClaw product from the OpenClaw vendor, impacting systems that have paired nodes communicating with an OpenClaw gateway.

Risk and Exploitability

The CVSS score of 8.6 classifies the flaw as high severity. EPSS data is not available, and the vulnerability is not listed in the CISA KEV catalog, indicating no confirmed exploitation in the wild yet. The likely attack surface is a node within the same OpenClaw network that can send node.event messages to the gateway. An attacker controlling or compromising such a node can forge exec events, bypassing authorization checks and potentially executing arbitrary commands on the gateway or other affected nodes. Because the vulnerability requires a trusted context within the cluster, the immediate risk to external actors is limited unless they gain foothold inside the OpenClaw environment.

Generated by OpenCVE AI on June 11, 2026 at 21:51 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to OpenClaw 2026.5.18 or newer to receive the vendor fix for the insufficient provenance validation.
  • If an upgrade is not immediately possible, restrict which nodes are allowed to pair with the gateway and enforce stricter node authentication so that only fully trusted nodes can issue exec events.
  • Disable or tightly monitor exec-event handling on the gateway, configuring the system to reject unauthorized exec lifecycle messages before they reach execution paths.

Generated by OpenCVE AI on June 11, 2026 at 21:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 11 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.5.18 contains an insufficient provenance validation vulnerability in node event handling that allows paired nodes to forge exec lifecycle events without system.run authorization. A malicious or compromised paired node can send crafted node.event messages to the gateway, steering target sessions into exec-event paths that expose capabilities the reduced node surface should not provide.
Title OpenClaw < 2026.5.18 - Exec Lifecycle Event Forgery via Paired Node
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-862
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-11T20:09:15.669Z

Reserved: 2026-06-10T21:16:07.492Z

Link: CVE-2026-53816

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-11T21:16:23.830

Modified: 2026-06-11T21:16:23.830

Link: CVE-2026-53816

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-11T22:00:08Z

Weaknesses