CVE-2026-35639
published 2026-04-09CVE-2026-35639: OpenClaw before 2026.3.22 contains a privilege escalation vulnerability in the device.pair.approve method that allows an operator.pairing approver to approve…
PriorityP262high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
0.46%
36.4th percentile
OpenClaw before 2026.3.22 contains a privilege escalation vulnerability in the device.pair.approve method that allows an operator.pairing approver to approve pending device requests with broader operator scopes than the approver actually holds. Attackers can exploit insufficient scope validation to escalate privileges to operator.admin and achieve remote code execution on the Node infrastructure.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| openclaw | openclaw | < 2026.3.22 | 2026.3.22 |
| openclaw | openclaw | >= 0 < 2026.3.22 | 2026.3.22 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv4.08.7HIGHCVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-r3v5-2grc-429h: OpenClaw before 2026
ghsa_unreviewed·2026-04-10
CVE-2026-35639 [HIGH] CWE-648 GHSA-r3v5-2grc-429h: OpenClaw before 2026
OpenClaw before 2026.3.22 contains a privilege escalation vulnerability in the device.pair.approve method that allows an operator.pairing approver to approve pending device requests with broader operator scopes than the approver actually holds. Attackers can exploit insufficient scope validation to escalate privileges to operator.admin and achieve remote code execution on the Node infrastructure.
VulDB
OpenClaw up to 2026.3.21 device.pair.approve incorrect privileged apis (GHSA-hf68-49fm-59cq)
vuldb·2026-04-10·CVSS 8.7
CVE-2026-35639 [HIGH] OpenClaw up to 2026.3.21 device.pair.approve incorrect privileged apis (GHSA-hf68-49fm-59cq)
A vulnerability labeled as critical has been found in OpenClaw up to 2026.3.21. This vulnerability affects the function device.pair.approve. Such manipulation leads to incorrect use of privileged apis.
This vulnerability is traded as CVE-2026-35639. The attack may be launched remotely. There is no exploit available.
The affected component should be upgraded.
GHSA
OpenClaw Gateway: RCE and Privilege Escalation from operator.pairing to operator.admin via device.pair.approve
ghsa·2026-03-26
CVE-2026-35639 [CRITICAL] CWE-269 OpenClaw Gateway: RCE and Privilege Escalation from operator.pairing to operator.admin via device.pair.approve
OpenClaw Gateway: RCE and Privilege Escalation from operator.pairing to operator.admin via device.pair.approve
## Summary
device.pair.approve allowed an operator.pairing approver to approve a pending device request for broader operator scopes than the approver actually held.
## Affected Packages / Versions
- Package: `openclaw` (npm)
- Affected: = 2026.3.22
- Latest released tag checked: `v2026.3.23-2` (`630f1479c44f78484dfa21bb407cbe6f171dac87`)
- Latest published npm version checked: `2026.3.23-2`
## Fix Commit(s)
- `fc2d29ea926f47c428c556e92ec981441228d2a4`
## Release Status
The fix shipped in `v2026.3.22` and remains present in `v2026.3.23` and `v2026.3.23-2`.
## Code-Level Confirmation
- src/gateway/server-methods/devices.ts now threads caller scopes into device.pair.approve.
- s
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/openclaw/openclaw/commit/630f1479c44f78484dfa21bb407cbe6f171dac87https://github.com/openclaw/openclaw/commit/fc2d29ea926f47c428c556e92ec981441228d2a4https://github.com/openclaw/openclaw/security/advisories/GHSA-hf68-49fm-59cqhttps://www.vulncheck.com/advisories/openclaw-privilege-escalation-via-device-pair-approve-scope-validation
2026-04-09
Published