PatchSiren cyber security CVE debrief
CVE-2026-53848 OpenClaw CVE debrief
CVE-2026-53848 is a low-severity vulnerability in OpenClaw before version 2026.5.26 that allows authenticated operators to bypass the exec allowlist and execute wrapper-level side effects outside allowlisted command intent. The vulnerability has a CVSS score of 2.3 and is classified as CWE-184. Attackers can craft command requests that bypass allowlist validation by leveraging transparent command wrappers to perform unintended operations.
- Vendor
- OpenClaw
- Product
- Unknown
- CVSS
- LOW 2.3
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-16
- Original CVE updated
- 2026-06-17
- Advisory published
- 2026-06-16
- Advisory updated
- 2026-06-17
Who should care
Users of OpenClaw before version 2026.5.26 should apply the patch to prevent authenticated operators from bypassing the exec allowlist.
Technical summary
The vulnerability is caused by a flaw in the allowlist validation mechanism of OpenClaw, which allows authenticated operators to execute wrapper-level side effects outside allowlisted command intent. The vulnerability can be exploited by crafting command requests that bypass allowlist validation using transparent command wrappers.
Defensive priority
low
Recommended defensive actions
- Apply the patch to upgrade OpenClaw to version 2026.5.26 or later.
- Restrict access to authenticated operators to prevent exploitation.
Evidence notes
The vulnerability was reported by Vulncheck and is tracked under CVE-2026-53848.
Official resources
CVE-2026-53848 was published on [cvePublishedAt] and modified on [cveModifiedAt].