CVE-2026-53817
Received Received - Intake
Locality Validation Bypass in OpenClaw Control UI

Publication date: 2026-06-11

Last updated on: 2026-06-11

Assigner: VulnCheck

Description
OpenClaw before 2026.5.22 contains a locality validation vulnerability in Control UI pairing that allows attackers with network access to spoof locality information and obtain durable admin-capable device tokens. Attackers can exploit insufficient locality-derived trust validation to convert temporary shared access into persistent administrative credentials that survive token rotation.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-11
Last Modified
2026-06-11
Generated
2026-06-12
AI Q&A
2026-06-12
EPSS Evaluated
N/A
NVD
CVE-2026-53817
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openclaw openclaw to 2026.5.22 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-290 This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in OpenClaw versions before 2026.5.22 and involves a flaw in the Control UI pairing process. Specifically, it is a locality validation vulnerability that allows attackers who have network access to spoof locality information. By doing so, attackers can obtain durable device tokens that grant administrative capabilities.

The core issue is insufficient validation of trust based on locality, which enables attackers to convert temporary shared access tokens into persistent administrative credentials. These credentials remain valid even after token rotation, allowing continued unauthorized access.

Impact Analysis

This vulnerability can have a significant impact by allowing attackers to gain persistent administrative access to devices running OpenClaw. With such access, attackers can control the device, potentially manipulate its functions, access sensitive data, or disrupt operations.

Because the administrative credentials obtained are durable and survive token rotation, the attacker’s access is long-lasting and difficult to revoke, increasing the risk and severity of compromise.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53817. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart