CVE-2026-41352
HIGHOpenClaw < 2026.3.31 - Remote Code Execution via Node Scope Gate Bypass
Title source: cnaDescription
OpenClaw before 2026.3.31 contains a remote code execution vulnerability where a device-paired node can bypass the node scope gate authentication mechanism. Attackers with device pairing credentials can execute arbitrary node commands on the host system without proper node pairing validation.
References (3)
Core 3
Core References
Vendor Advisory vendor-advisory
GitHub Security Advisory (GHSA-xj9w-5r6q-x6v4)
https://github.com/openclaw/openclaw/security/advisories/GHSA-xj9w-5r6q-x6v4
Patch patch
Patch Commit
https://github.com/openclaw/openclaw/commit/3886b65ef21d02808c1a106fa1f9f69e22f71c32
Third Party Advisory third-party-advisory
VulnCheck Advisory: OpenClaw < 2026.3.31 - Remote Code Execution via Node Scope Gate Bypass
https://www.vulncheck.com/advisories/openclaw-remote-code-execution-via-node-scope-gate-bypass
Scores
CVSS v3
8.8
EPSS
0.0054
EPSS Percentile
41.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-862
Status
published
Products (4)
npm/openclaw
0 - 2026.3.31npm
OpenClaw/OpenClaw
< 2026.3.31
openclaw/openclaw
< 2026.3.31
OpenClaw/OpenClaw
2026.3.31
Published
Apr 23, 2026
Tracked Since
Apr 24, 2026