CVE-2026-35674
HIGHOpenClaw < 2026.5.18 - Scope Bypass via Inherited chat.send Route
Title source: cnaDescription
OpenClaw before 2026.5.18 contains a scope bypass vulnerability in the Gateway chat.send route that allows scoped clients to execute privileged commands. Attackers with operator.write scope can deliver commands through inherited external routes to bypass operator.approvals and operator.admin scope requirements, enabling unauthorized plugin, config, MCP, allowlist, and ACP mutations.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
GitHub Security Advisory (GHSA-hw9r-h9mr-4jff)
https://github.com/openclaw/openclaw/security/advisories/GHSA-hw9r-h9mr-4jff
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/openclaw-scope-bypass-via-inherited-chat-send-route
Scores
CVSS v3
8.8
EPSS
0.0025
EPSS Percentile
15.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-863
Status
published
Products (3)
OpenClaw/OpenClaw
< 2026.5.18
openclaw/openclaw
< 2026.5.18
OpenClaw/OpenClaw
2026.5.18
Published
May 29, 2026
Tracked Since
May 29, 2026