OpenClaw Privilege Escalation: Critical Flaw in Device Pairing
The National Vulnerability Database has disclosed CVE-2026-41386, a critical privilege escalation vulnerability affecting OpenClaw before version 2026.3.22. This flaw stems from a lack of proper binding between bootstrap setup codes and intended device roles during the pairing process. The CVSSv3.1 score of 9.1 highlights the severity, indicating a critical risk.
Attackers can exploit this vulnerability during the initial device pairing phase. By manipulating the setup codes, they can escalate privileges beyond their designated role and scope, gaining unauthorized access or control. The National Vulnerability Database notes that the affected products are not specifically listed, suggesting a broad impact across various implementations of OpenClaw.
This isn’t just a theoretical bug; it’s a fundamental design flaw (CWE-648) in how trust is established. Defenders need to recognize that initial device setup is a prime attack vector. If an attacker can subvert the pairing process, they own the device before it even hits the network. This provides a critical window for adversaries to establish persistence and expand their reach.
What This Means For You
- If your organization uses OpenClaw in any capacity, immediately identify all instances and ensure they are updated to version 2026.3.22 or later. Prioritize auditing your device provisioning and pairing processes for any systems that rely on OpenClaw, looking for unauthorized device registrations or anomalous privilege assignments.
Related ATT&CK Techniques
🛡️ Detection Rules
3 rules · 6 SIEM formats3 detection rules auto-generated for this incident, mapped to MITRE ATT&CK. Sigma YAML is free — export to any SIEM format via the Intel Bot.
OpenClaw Privilege Escalation via Unbound Bootstrap Setup - CVE-2026-41386
title: OpenClaw Privilege Escalation via Unbound Bootstrap Setup - CVE-2026-41386
id: scw-2026-04-28-ai-1
status: experimental
level: critical
description: |
Detects the execution of OpenClaw bootstrap setup executables with specific command-line arguments during initial pairing, which is indicative of the privilege escalation vulnerability (CVE-2026-41386) where bootstrap codes are not properly bound to device roles and scopes. This rule specifically targets the exploitation vector described in the CVE.
author: SCW Feed Engine (AI-generated)
date: 2026-04-28
references:
- https://shimiscyberworld.com/posts/nvd-CVE-2026-41386/
tags:
- attack.privilege_escalation
- attack.t1068
logsource:
category: process_creation
detection:
selection:
Image|endswith:
- 'openclaw_bootstrap.exe'
CommandLine|contains:
- '/setup'
- '--configure'
ParentImage|contains:
- 'untrusted_source'
condition: selection
falsepositives:
- Legitimate administrative activity
Source: Shimi's Cyber World · License & reuse
Indicators of Compromise
| ID | Type | Indicator |
|---|---|---|
| CVE-2026-41386 | Privilege Escalation | OpenClaw before 2026.3.22 |
| CVE-2026-41386 | Privilege Escalation | bootstrap setup codes not bound to intended device roles and scopes during pairing |
| CVE-2026-41386 | Privilege Escalation | Exploitable during first-use device pairing |
Written by SCW Vulnerability Desk
Source & Attribution
| Source Platform | NVD |
| Channel | National Vulnerability Database |
| Published | April 28, 2026 at 22:37 UTC |
This content was AI-rewritten and enriched by Shimi's Cyber World based on the original source. All intellectual property rights remain with the original author.
Believe this infringes your rights? Submit a takedown request.
Related coverage
Daily Security Digest — 2026-04-28
80 vulnerability disclosures (20 Critical, 60 High) and 25 curated intelligence stories from 9 sources.
CVE-2026-42431: OpenClaw Vulnerability Allows Persistent Browser Profile Mutation
CVE-2026-42431 — OpenClaw before 2026.4.8 contains a security bypass vulnerability in node.invoke(browser.proxy) that allows mutation of persistent browser profiles. Attackers can exploit this path to...
OpenClaw CVE-2026-42426: Improper Authorization Allows Node Pairing Bypass
CVE-2026-42426 — OpenClaw before 2026.4.8 contains an improper authorization vulnerability where the node.pair.approve method accepts operator.write scope instead of the narrower operator.pairing scope, allowing unprivileged...