OpenClaw Privilege Escalation Vulnerability in Token Rotation Function
Vulnerability
A privilege escalation vulnerability has been identified in OpenClaw versions prior to 2026.3.11. The issue resides in the 'device.token.rotate' function, where callers with the 'operator.pairing' scope can mint tokens with broader scopes. This vulnerability arises because the function fails to limit newly minted scopes to the caller's existing scope set. As a result, attackers can obtain 'operator.admin' tokens for paired devices, potentially leading to remote code execution on connected nodes via 'system.run', or unauthorized access to gateway-admin privileges.
Impact
Exploitation of this vulnerability allows for unauthorized escalation of privileges, with 'operator.admin' tokens being minted for paired devices. In environments with connected node hosts or companion applications that permit 'system.run' executions, this could result in remote code execution on the node. Even in the absence of connected nodes, the vulnerability still allows unauthorized access to gateway-admin rights.
Remediation
Users are advised to upgrade to OpenClaw version 2026.3.11 or later.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.