OpenClaw Privilege Escalation Vulnerability in Node Pairing Reconnect
Vulnerability
A privilege escalation vulnerability has been identified in OpenClaw versions prior to 2026.4.8. This vulnerability allows previously paired nodes to reconnect and execute commands with elevated privileges, including execution-capable commands, without the necessary operator.admin scope. Attackers can bypass the re-pairing authentication process to execute privileged commands on the local assistant system.
Impact
Exploitation of this vulnerability allows for unauthorized execution of privileged commands on the local assistant system, bypassing normal authentication and authorization processes.
Reproduction
To reproduce this vulnerability, pair a node with an OpenClaw assistant running a vulnerable version. Once paired, the node can reconnect and execute privileged commands without going through the re-pairing process or having the required operator.admin scope.
Remediation
Users can upgrade to OpenClaw version 2026.4.8 or later to address this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.