Description
OpenClaw before 2026.4.25 contains a control scope enforcement bypass vulnerability in the focus command that allows authenticated callers to execute the command without proper authorization checks. Attackers can trigger the focus command to change focus state outside intended caller authority, potentially enabling unauthorized operations depending on gateway configuration and input trust levels.
Published: 2026-06-16
Score: 6.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

OpenClaw versions before 2026.4.25 contain a control scope enforcement bypass that allows authenticated callers to execute the focus command without proper authorization checks. This flaw permits an attacker with valid credentials to change the focus state beyond the intended caller authority, potentially enabling unauthorized operations such as misconfiguring the gateway, redirecting traffic, or executing arbitrary commands if the gateway trusts the input. The vulnerability is an access control failure (CWE-862).

Affected Systems

All OpenClaw deployments running a version earlier than 2026.4.25 are affected. The product is OpenClaw, a node.js-based client platform for network gateways. No other vendors are listed. The specific version information is limited to "before 2026.4.25", but any build preceding that release is at risk.

Risk and Exploitability

The CVSS base score of 6.8 indicates moderate severity. The EPSS score of less than 1% suggests a very low probability of exploitation in the wild. It is not currently listed in CISA's KEV catalog. The likely attack path requires an authenticated user to invoke the focus command; once the command is executed, the lack of proper scope enforcement enables an attacker to manipulate the system state. The vulnerability can be exploited remotely over the network if the focus command is exposed through the OpenClaw API or web interface.

Generated by OpenCVE AI on June 17, 2026 at 21:24 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade OpenClaw to version 2026.4.25 or later, where proper authorization checks are enforced for the focus command.
  • Restrict the use of the focus command to administrative roles only, enforcing least privilege on user accounts that can invoke it.
  • Disable or closely monitor the focus command endpoint to detect unexpected usage, and consider hardening the gateway configuration to reject focus requests from untrusted sources.

Generated by OpenCVE AI on June 17, 2026 at 21:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 16 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 16 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.4.25 contains a control scope enforcement bypass vulnerability in the focus command that allows authenticated callers to execute the command without proper authorization checks. Attackers can trigger the focus command to change focus state outside intended caller authority, potentially enabling unauthorized operations depending on gateway configuration and input trust levels.
Title OpenClaw < 2026.4.25 - Control Scope Enforcement Bypass in Focus Command
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-862
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N'}

cvssV4_0

{'score': 6.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-16T18:38:31.964Z

Reserved: 2026-06-10T21:21:12.125Z

Link: CVE-2026-53850

cve-icon Vulnrichment

Updated: 2026-06-16T18:38:27.632Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T19:17:02.183

Modified: 2026-06-16T20:42:46.200

Link: CVE-2026-53850

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-16T21:00:12Z

Weaknesses