PatchSiren cyber security CVE debrief
CVE-2026-53843 OpenClaw CVE debrief
CVE-2026-53843 is a HIGH-severity vulnerability in OpenClaw before version 2026.5.26. The vulnerability allows an authorization bypass, enabling a paired device to regain WebSocket node-level access without renewed approval after revocation. This weakness in revocation controls can maintain unauthorized access longer than intended. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 8.7.
- Vendor
- OpenClaw
- Product
- Unknown
- CVSS
- HIGH 8.7
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-16
- Original CVE updated
- 2026-06-18
- Advisory published
- 2026-06-16
- Advisory updated
- 2026-06-18
Who should care
Users of OpenClaw before version 2026.5.26 should be aware of this vulnerability and take necessary actions to mitigate the risk.
Technical summary
The vulnerability exists in OpenClaw's handling of pairing-scoped device sessions. Specifically, a surviving session can re-establish node token authority after revocation, allowing attackers with a paired device to regain access without renewed approval.
Defensive priority
HIGH
Recommended defensive actions
- Upgrade to OpenClaw version 2026.5.26 or later.
- Review and update access controls for paired devices.
- Monitor for suspicious activity related to WebSocket node-level access.
Evidence notes
The CVE record and details were obtained from official sources, including CVE.org and the National Vulnerability Database (NVD).
Official resources
CVE-2026-53843 was published on 2026-06-16T19:17:01.257Z and modified on 2026-06-16T20:42:46.200Z.