Loading market data...
← Back to CVE feed

CVE-2026-53838

CRITICAL CVSS 9.8 View on NVD ↗

Description

OpenClaw before 2026.5.27 contains a state mutation vulnerability in node pairing reconnection that allows paired nodes to confuse approval scope decisions. Attackers can exploit reconnection logic to restore or present broader node authority than intended, potentially bypassing approval restrictions.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Published: Jun 12, 2026 22:16 UTC Modified: Jun 12, 2026 22:16 UTC