Description
OpenClaw before 2026.5.7 contains a privilege escalation vulnerability where the allowFrom feature improperly validates Discord account identity using mutable display names instead of immutable user IDs. Attackers with Discord accounts can change their display name to match a policy entry and gain unauthorized agent access intended for another Discord identity.
Published: 2026-06-16
Score: 8.6 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

OpenClaw versions before 2026.5.7 contain a flaw in the allowFrom feature where the application verifies Discord identities by comparing mutable display names instead of permanently assigned user IDs. This improper check allows an attacker who controls any Discord account to change their display name to match an entry in the allowFrom list, thereby gaining agent access that was intended for a different user. The vulnerability is classified as CWE‑290, indicating an authorization bypass via inadequate identity verification.

Affected Systems

The affected product is OpenClaw, all releases prior to 2026.5.7. The CVE specifies that any instance running an older version is susceptible; no specific operating systems or deployment environments are singled out beyond the standard node.js runtime.

Risk and Exploitability

The CVSS score of 8.6 signals high severity, while the EPSS score is below 1%, suggesting a low current exploitation probability. The vulnerability is not present in the CISA KEV catalog. An attacker who can control a Discord account can perform the display name change locally, then request access via the compromised OpenClaw instance, escalating privileges on that system. The most likely attack vector is social engineering or account compromise, with no network-wide prerequisite beyond access to the Discord account.

Generated by OpenCVE AI on June 17, 2026 at 19:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Deploy the official OpenClaw update to version 2026.5.7 or newer, which fixes the allowFrom identity validation to use immutable Discord user IDs.
  • If the update cannot be applied immediately, temporarily disable or remove the allowFrom feature to block the exploitation path.
  • Audit existing allowFrom entries to ensure no compromised Discord identities remain and review application logs for any unauthorized display name modifications.

Generated by OpenCVE AI on June 17, 2026 at 19:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 16 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.5.7 contains a privilege escalation vulnerability where the allowFrom feature improperly validates Discord account identity using mutable display names instead of immutable user IDs. Attackers with Discord accounts can change their display name to match a policy entry and gain unauthorized agent access intended for another Discord identity.
Title OpenClaw < 2026.5.7 - Privilege Escalation via Mutable Discord Display Names in allowFrom
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-290
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N'}

cvssV4_0

{'score': 8.6, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-17T13:53:08.464Z

Reserved: 2026-06-10T21:21:12.125Z

Link: CVE-2026-53849

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T19:17:02.053

Modified: 2026-06-16T20:42:46.200

Link: CVE-2026-53849

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-17T03:30:02Z

Weaknesses
  • CWE-290

    Authentication Bypass by Spoofing