CVE-2026-42432
Modified Modified - Updated After Analysis
Privilege Escalation in OpenClaw Allows Unauthorized Exec Commands

Publication date: 2026-04-28

Last updated on: 2026-05-26

Assigner: VulnCheck

Description
OpenClaw before 2026.4.8 contains a privilege escalation vulnerability allowing previously paired nodes to reconnect with exec-capable commands without the operator.admin scope requirement. Attackers can bypass re-pairing authentication to execute privileged commands on the local assistant system.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-28
Last Modified
2026-05-26
Generated
2026-06-16
AI Q&A
2026-04-28
EPSS Evaluated
2026-06-15
NVD
CVE-2026-42432
EUVD
EUVD-2026-26134
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openclaw openclaw to 2026.4.8 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-863 The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Compliance Impact

The provided information does not specify any direct impact of this vulnerability on compliance with common standards and regulations such as GDPR or HIPAA.

Executive Summary

CVE-2026-42432 is a privilege escalation vulnerability in OpenClaw versions before 2026.4.8. It allows previously paired nodes to reconnect using commands capable of executing privileged operations without requiring the usual operator.admin scope or re-pairing authentication.

This means an attacker who has access to a previously paired node can bypass security restrictions and execute privileged commands on the local assistant system, effectively escalating their privileges.

Impact Analysis

This vulnerability can lead to unauthorized execution of privileged commands on the local assistant system, potentially compromising the confidentiality, integrity, and availability of the system.

  • Attackers can bypass authentication mechanisms intended to restrict command execution.
  • Previously paired nodes can be exploited to gain elevated privileges without operator approval.
  • The system's security boundaries can be breached, allowing malicious actions that could disrupt normal operations or leak sensitive information.
Mitigation Strategies

To mitigate this vulnerability, you should upgrade OpenClaw to version 2026.4.8 or later, where the issue has been fixed.

This update addresses the privilege escalation vulnerability by enforcing proper operator.admin scope requirements during node pairing reconnect commands.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-42432. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart