Privilege Escalation Vulnerability in OpenClaw by OpenClaw
CVE-2026-35625

8.5HIGH

Key Information:

Vendor: Openclaw
Status: Openclaw
Vendor: CVE Published:; 9 April 2026

What is CVE-2026-35625?

The OpenClaw software, prior to version 2026.3.25, is susceptible to a privilege escalation vulnerability. This flaw allows attackers to exploit silent local shared-auth reconnects, which automatically approve scope-upgrade requests, thereby increasing device permission levels from operator.read to operator.admin. By leveraging this vulnerability, an attacker can instigate a reconnection to elevate privileges stealthily and potentially execute arbitrary code on the affected node.

Affected Version(s)

OpenClaw 0 < 2026.3.25

OpenClaw 2026.3.25

References

https://github.com/openclaw/openclaw/security/advisories/...

third-party-advisory

https://github.com/openclaw/openclaw/commit/81ebc7e0344fd...

patch

https://www.vulncheck.com/advisories/openclaw-privilege-e...

third-party-advisory

CVSS V4

Score:

8.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 9, 2026
Vulnerability Reserved
Apr 4, 2026

Credit

Peng Zhou (@zpbrent)

CVE-2026-35625 Data

JSON

Openclaw

What is CVE-2026-35625?

Affected Version(s)

References

CVSS V4

Timeline

Credit