Description
OpenClaw 2026.4.23 before 2026.4.24 contains an insecure file permissions vulnerability in config recovery that restores OpenClaw.json with overly broad permissions. Local attackers on shared hosts can read sensitive configuration data by exploiting the recovery path to access the restored config file.
Published: 2026-06-16
Score: 5.7 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

OpenClaw 2026.4.23 and earlier suffer from an insecure file permissions vulnerability during configuration recovery. When the recovery process restores the OpenClaw.json file, the permissions applied allow any local user on a shared host to read the file. This permits an attacker to gain access to sensitive configuration data, potentially revealing credentials, API keys, or other secrets. The weakness originates from improper file permission handling (CWE-732).

Affected Systems

This vulnerability affects all installations of OpenClaw using versions 2026.4.23 or earlier. Updating to 2026.4.24 or later eliminates the issue.

Risk and Exploitability

With a CVSS score of 5.7 the vulnerability presents moderate severity, and the EPSS score of less than 1% indicates a low probability of exploitation. It is not currently listed in CISA's KEV catalog. The attack is local; an attacker who can run code or trigger the recovery path on a shared system can read the restored OpenClaw.json file and extract confidential data.

Generated by OpenCVE AI on June 17, 2026 at 22:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update to OpenClaw 2026.4.24 or later
  • If updating immediately is not possible, restrict the permissions of the restored OpenClaw.json file to the owner only (chmod 600) to prevent other local users from reading it
  • If the instance runs on a shared host, consider moving it to an isolated environment or container with non-shared volumes to eliminate local file system access

Generated by OpenCVE AI on June 17, 2026 at 22:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-rwp6-7w3q-75fq OpenClaw: Config recovery could restore openclaw.json with broad file permissions
History

Tue, 16 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.4.24 contains an insecure file permissions vulnerability in config recovery that restores OpenClaw.json with overly broad permissions. Local attackers on shared hosts can read sensitive configuration data by exploiting the recovery path to access the restored config file. OpenClaw 2026.4.23 before 2026.4.24 contains an insecure file permissions vulnerability in config recovery that restores OpenClaw.json with overly broad permissions. Local attackers on shared hosts can read sensitive configuration data by exploiting the recovery path to access the restored config file.
Title OpenClaw < 2026.4.24 - Insecure File Permissions in Config Recovery via OpenClaw.json OpenClaw 2026.4.23 < 2026.4.24 - Insecure File Permissions in Config Recovery via OpenClaw.json

Tue, 16 Jun 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 16 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.4.24 contains an insecure file permissions vulnerability in config recovery that restores OpenClaw.json with overly broad permissions. Local attackers on shared hosts can read sensitive configuration data by exploiting the recovery path to access the restored config file.
Title OpenClaw < 2026.4.24 - Insecure File Permissions in Config Recovery via OpenClaw.json
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-732
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N'}

cvssV4_0

{'score': 5.7, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N'}


Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-16T19:33:07.401Z

Reserved: 2026-06-10T21:22:34.480Z

Link: CVE-2026-53856

cve-icon Vulnrichment

Updated: 2026-06-16T18:37:12.277Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T19:17:03.047

Modified: 2026-06-16T20:42:46.200

Link: CVE-2026-53856

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-17T22:30:13Z

Weaknesses
  • CWE-732

    Incorrect Permission Assignment for Critical Resource