PatchSiren cyber security CVE debrief
CVE-2026-53810 OpenClaw CVE debrief
CVE-2026-53810 is a high-severity vulnerability in OpenClaw. The vulnerability exists in OpenClaw before version 2026.5.18 and allows for code execution where marketplace runtime extension metadata can redirect loading toward unscanned package payloads. Attackers with trusted operator access can manipulate extension metadata to load plugin code outside reviewed package entry points, bypassing security scanning. The CVSS score for this vulnerability is 7.7, indicating a high severity.
- Vendor
- OpenClaw
- Product
- Unknown
- CVSS
- HIGH 7.7
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-11
- Original CVE updated
- 2026-06-12
- Advisory published
- 2026-06-11
- Advisory updated
- 2026-06-12
Who should care
Users of OpenClaw before version 2026.5.18 should be aware of this vulnerability and take steps to mitigate it.
Technical summary
The vulnerability is caused by the ability to manipulate extension metadata to load plugin code outside reviewed package entry points. This allows attackers with trusted operator access to execute code outside of the reviewed package entry points.
Defensive priority
High
Recommended defensive actions
- Upgrade to OpenClaw version 2026.5.18 or later.
- Review and restrict trusted operator access to prevent manipulation of extension metadata.
- Implement additional security scanning measures to detect and prevent loading of unscanned package payloads.
Evidence notes
The vulnerability was published on June 11, 2026, and modified on June 12, 2026. The CVE record and NVD detail pages provide additional information.
Official resources
-
CVE-2026-53810 CVE record
CVE.org
-
CVE-2026-53810 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Mitigation, Vendor Advisory
-
Mitigation or vendor reference
[email protected] - Third Party Advisory
CVE-2026-53810 was published on [cvePublishedAt] and modified on [cveModifiedAt].