PatchSiren cyber security CVE debrief
CVE-2026-32905 OpenClaw CVE debrief
OpenClaw before 2026.5.4 contains an authorization bypass vulnerability in the bundled device-pair plugin. The flaw allows non-owner authorized chat senders to issue device-pairing bootstrap codes without proper scope validation. Attackers with chat command access can create setup codes to enroll devices with operator/node capabilities, granting persistent credentials until manual removal. The vulnerability was published to the CVE List on 2026-05-29 and is currently undergoing analysis in the National Vulnerability Database. The CVSS 4.0 vector indicates network attack vector, low attack complexity, low privileges required, and high impacts to confidentiality and integrity.
- Vendor
- OpenClaw
- Product
- Unknown
- CVSS
- HIGH 8.7
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-05-29
- Original CVE updated
- 2026-05-29
- Advisory published
- 2026-05-29
- Advisory updated
- 2026-05-29
Who should care
Organizations running OpenClaw instances with chat command functionality enabled, particularly those with multi-user chat environments where non-owner users have command access. Security teams responsible for IoT or device management platforms using OpenClaw's device-pairing capabilities. Administrators who have deployed OpenClaw versions prior to 2026.5.4 and rely on device-pair plugin for device enrollment workflows.
Technical summary
The vulnerability exists in OpenClaw's bundled device-pair plugin due to insufficient authorization checks when processing chat commands. Non-owner authorized chat senders can invoke functionality to generate device-pairing bootstrap codes without proper scope validation. Successful exploitation allows attackers to create setup codes that enroll devices with operator/node capabilities. These credentials persist until manually removed, creating a long-term access risk. The attack requires network access and low privileges (authorized chat sender), with low attack complexity. The CVSS 4.0 score of 8.7 reflects high impacts to confidentiality and integrity, with low availability impact. The weakness is categorized as CWE-862 (Missing Authorization).
Defensive priority
HIGH
Recommended defensive actions
- Upgrade OpenClaw to version 2026.5.4 or later to remediate the authorization bypass vulnerability in the device-pair plugin.
- Review and audit existing device-pairing bootstrap codes for unauthorized issuance, particularly those created by non-owner chat senders.
- Manually revoke any suspicious or unauthorized device credentials that may have been provisioned through this vulnerability.
- Implement additional authorization checks for chat command handlers, ensuring proper scope validation before allowing sensitive operations like device-pairing code generation.
- Monitor chat command logs for unexpected device-pairing bootstrap code issuance attempts.
- Restrict chat command access to trusted users only, as the vulnerability requires existing authorized chat sender privileges as a prerequisite.
Evidence notes
CVE published 2026-05-29T16:16:25.093Z; modified 2026-05-29T16:29:34.540Z. NVD status: Undergoing Analysis. CVSS 4.0 vector provided. Weakness classified as CWE-862 (Missing Authorization). Source references include GitHub Security Advisory and Vulncheck advisory.
Official resources
2026-05-29