CVE-2026-44110
Authorization Bypass in OpenClaw via DM Pairing Trust
Publication date: 2026-05-06
Last updated on: 2026-05-07
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| openclaw | openclaw | to 2026.4.15 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-863 | The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in OpenClaw versions before 2026.4.15 and involves an authorization bypass in the Matrix room control-command system. The issue arises because the system trusts direct message (DM) pairing-store entries, allowing attackers who have DM-paired sender IDs to execute room control commands without being included in the configured allowlists. This means that by posting messages in bot rooms, attackers can potentially perform privileged actions within OpenClaw that they should not be authorized to do.
How can this vulnerability impact me? :
The impact of this vulnerability is significant because attackers can bypass authorization controls and execute privileged commands within OpenClaw. This could lead to unauthorized control over rooms, potentially disrupting operations, manipulating data, or gaining elevated privileges that compromise the security and integrity of the system.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
The vulnerability in OpenClaw allows unauthorized users to execute privileged room control commands by bypassing authorization checks. This could lead to unauthorized access and control over system functions, potentially resulting in unauthorized data access or manipulation.
Such unauthorized privileged behavior may impact compliance with standards and regulations like GDPR and HIPAA, which require strict access controls and protection of sensitive data. If exploited, this vulnerability could lead to violations of these regulations due to improper authorization and potential exposure or alteration of protected information.
How can this vulnerability be detected on my network or system? Can you suggest some commands?
This vulnerability involves unauthorized execution of room control commands by attackers with DM-paired sender IDs posting in bot rooms. Detection would involve monitoring for unexpected or unauthorized room control commands originating from direct message (DM) paired sender IDs that are not in configured allowlists.
Specifically, you should look for commands executed in bot rooms by users who are not members of the allowlist or room but have DM pairing-store entries.
Since the vulnerability exploits improper trust in DM pairing-store entries, commands or logs that show room control commands triggered by DM-paired sender IDs could indicate exploitation attempts.
However, the provided resources do not include specific detection commands or scripts.
What immediate steps should I take to mitigate this vulnerability?
The primary mitigation step is to upgrade OpenClaw to version 2026.4.15 or later, where the vulnerability has been fixed.
The fix removes reliance on DM pairing-store entries for room control-command authorization, ensuring that only configured allowlists, room memberships, and group allowlists authorize such commands.
If upgrading immediately is not possible, consider restricting or monitoring room control commands originating from DM-paired sender IDs and limiting bot room access.