GHSA-fqw4-mph7-2vr8

Source

https://github.com/advisories/GHSA-fqw4-mph7-2vr8

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-fqw4-mph7-2vr8/GHSA-fqw4-mph7-2vr8.json

JSON Data

https://api.test.osv.dev/v1/vulns/GHSA-fqw4-mph7-2vr8

Published

2026-03-27T22:29:47Z

Modified

2026-03-27T22:48:29.816731Z

Severity

9.4 (Critical) CVSS_V4 - CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H CVSS Calculator

Summary

OpenClaw: Silent privilege escalation via gateway shared-auth reconnect

Details

Summary

Gateway local shared-auth reconnect silently widens paired device scope from operator.read to operator.admin and reach node RCE

Affected Packages / Versions

Package: openclaw
Affected versions: <= 2026.3.24
First patched version: 2026.3.25
Latest published npm version at verification time: 2026.3.24

Details

Silent local shared-auth reconnects could previously auto-approve scope-upgrade requests and widen a paired device from operator.read to operator.admin. Commit 81ebc7e0344fd19c85778e883bad45e2da972229 blocks silent reconnect scope upgrades so widened scopes require an explicit pairing approval instead of an implicit local reconnect path.

Verified vulnerable on tag v2026.3.24 and fixed on main by commit 81ebc7e0344fd19c85778e883bad45e2da972229.

Fix Commit(s)

81ebc7e0344fd19c85778e883bad45e2da972229

Database specific

{
    "cwe_ids": [
        "CWE-863"
    ],
    "github_reviewed_at": "2026-03-27T22:29:47Z",
    "github_reviewed": true,
    "nvd_published_at": null,
    "severity": "CRITICAL"
}

References

Affected packages

npm / openclaw

Package

Name: openclaw; View open source insights on deps.dev
Purl: pkg:npm/openclaw

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

2026.3.24

Database specific

source

"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-fqw4-mph7-2vr8/GHSA-fqw4-mph7-2vr8.json"