CVE-2026-43535
Analyzed Analyzed - Analysis Complete
Authorization Context Reuse in OpenClaw Queue Batches

Publication date: 2026-05-05

Last updated on: 2026-05-07

Assigner: VulnCheck

Description
OpenClaw before 2026.4.14 contains an authorization context reuse vulnerability in collect-mode queue batches that allows messages from different senders to inherit the final sender's authorization context. Attackers can exploit this by sending multiple queued messages to drain batches using a more privileged sender's context, causing earlier messages to execute with elevated permissions.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-05
Last Modified
2026-05-07
Generated
2026-06-16
AI Q&A
2026-05-05
EPSS Evaluated
2026-06-14
NVD
CVE-2026-43535
EUVD
EUVD-2026-27281
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openclaw openclaw to 2026.4.14 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-266 A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

OpenClaw versions before 2026.4.14 have a vulnerability in the collect-mode queue batches where the authorization context is reused incorrectly. This means that messages from different senders can inherit the authorization context of the final sender in a batch.

Attackers can exploit this by sending multiple queued messages to drain batches using a more privileged sender's context, causing earlier messages to execute with elevated permissions that they should not have.

Compliance Impact

The vulnerability allows messages from different senders to inherit the authorization context of a more privileged sender, leading to execution with elevated permissions. This incorrect privilege assignment can result in unauthorized access to sensitive data or actions.

Such unauthorized privilege escalation can potentially lead to violations of compliance requirements in standards like GDPR and HIPAA, which mandate strict access controls and protection of personal and sensitive information.

Therefore, exploitation of this vulnerability could compromise the confidentiality and integrity of data, impacting an organization's ability to meet regulatory obligations.

Impact Analysis

This vulnerability can lead to unauthorized privilege escalation within the OpenClaw system. Messages that should have limited permissions might execute with higher privileges if they inherit the authorization context of a more privileged sender.

As a result, attackers could perform actions or access resources that they are not authorized to, potentially compromising the integrity and security of the system.

Mitigation Strategies

To mitigate the authorization context reuse vulnerability in OpenClaw, you should upgrade to version 2026.4.14 or later, where the issue has been fixed by splitting collect-mode batches by sender authorization context before dispatch.

  • Upgrade OpenClaw to version 2026.4.14 or newer.
  • Ensure that collect-mode queue batches are processed with separate authorization contexts per sender to prevent privilege escalation.
Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-43535. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart