OpenClaw Bootstrap Setup Code Replay Vulnerability During Device Pairing Verification

A vulnerability in OpenClaw versions prior to 2026.3.13 allows for the replay of bootstrap setup codes during the device pairing verification process. This issue is present in the file 'src/infra/device-bootstrap.ts'. The vulnerability arises because a valid bootstrap code can be verified multiple times before the pairing request is approved. Exploiting this flaw enables attackers to escalate pending pairing scopes, including privileges, such as gaining 'operator.admin' rights.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to gain 'operator.admin' rights.

Reproduction

To reproduce this vulnerability, first issue a device bootstrap token. Then, verify the token using the 'verifyDeviceBootstrapToken' function. This can be done multiple times before the pairing request is approved. After the first verification, the token can be replayed to mutate the pending device pairing and request broader scopes, including escalation to 'operator.admin' rights.

Remediation

Users can upgrade to OpenClaw version 2026.3.13 or later, which addresses this vulnerability by making bootstrap setup codes single-use. Instructions for updating can be found in the OpenClaw documentation.