PatchSiren cyber security CVE debrief
CVE-2026-53854 OpenClaw CVE debrief
CVE-2026-53854 is a medium-severity privilege escalation vulnerability in OpenClaw before version 2026.4.25. The vulnerability allows senders to inherit the 'ownerAllowFrom' wildcard state across channel boundaries, potentially bypassing access controls. Attackers can exploit this by sending commands on affected internal or webchat paths to execute owner-style command behavior outside intended channel scope.
- Vendor
- OpenClaw
- Product
- Unknown
- CVSS
- MEDIUM 6
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-16
- Original CVE updated
- 2026-06-16
- Advisory published
- 2026-06-16
- Advisory updated
- 2026-06-16
Who should care
Users of OpenClaw before version 2026.4.25 should apply the patch to prevent potential privilege escalation attacks.
Technical summary
The vulnerability is caused by a flaw in the internal and webchat command authentication mechanism in OpenClaw. This flaw allows senders to inherit the 'ownerAllowFrom' wildcard state across channel boundaries, potentially bypassing access controls.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply the patch to update OpenClaw to version 2026.4.25 or later.
- Review and restrict access controls for internal and webchat commands.
Evidence notes
The CVE-2026-53854 vulnerability was reported by Vulncheck and is tracked on the NVD and CVE websites.
Official resources
CVE-2026-53854 was published on 2026-06-16T19:17:02.780Z and modified on 2026-06-16T20:42:46.200Z.