Description
OpenClaw before 2026.5.6 contains an authorization bypass vulnerability in native command handling that allows authenticated senders to execute owner-only commands without proper policy enforcement. Attackers can trigger native command handling to bypass the configured owner-command access control, potentially executing privileged commands from unauthorized users.
Published: 2026-06-12
Score: 7.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

OpenClaw before version 2026.5.6 contains an authorization bypass in native command handling that allows authenticated users to execute commands that should be restricted to owners. This flaw removes the policy enforcement layer, enabling privileged operations to be performed by unauthorized participants. The vulnerability is classified as CWE-863.

Affected Systems

All installations of OpenClaw older than version 2026.5.6 are affected, regardless of the hosting environment, as the flaw resides in the native command handling component.

Risk and Exploitability

The CVSS score of 7.7 indicates moderate to high severity. No EPSS score is available and the vulnerability is not listed in the CISA KEV catalog, suggesting a likely low exploitation likelihood under current threat intelligence. The attack vector requires an authenticated attacker to invoke the native command handling path; once reached, the lack of owner-command enforcement can be leveraged to run privileged commands, potentially leading to full system compromise for the authenticated user.

Generated by OpenCVE AI on June 12, 2026 at 23:39 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to OpenClaw version 2026.5.6 or higher.
  • If an upgrade is not immediately feasible, disable or restrict the native command handling feature so that only verified owner commands are processed.
  • Establish logging and monitoring for privileged command executions to detect any unauthorized use promptly.

Generated by OpenCVE AI on June 12, 2026 at 23:39 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 15 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Fri, 12 Jun 2026 22:15:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.5.6 contains an authorization bypass vulnerability in native command handling that allows authenticated senders to execute owner-only commands without proper policy enforcement. Attackers can trigger native command handling to bypass the configured owner-command access control, potentially executing privileged commands from unauthorized users.
Title OpenClaw < 2026.5.6 - Native Command Authorization Bypass via Owner-Command Enforcement
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-863
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 7.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}


Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-15T18:21:36.340Z

Reserved: 2026-06-10T21:16:58.211Z

Link: CVE-2026-53828

cve-icon Vulnrichment

Updated: 2026-06-15T18:21:32.442Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-12T22:16:54.203

Modified: 2026-06-16T02:55:43.887

Link: CVE-2026-53828

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-13T00:45:06Z

Weaknesses