OpenClaw is vulnerable to an authentication bypass that permits unauthorized users to gain administrative privileges and execute sensitive Gateway RPCs.

This is an authentication and authorization flaw where unpaired or restricted trusted-proxy Control UI clients can acquire cached operator.admin authority. By exploiting this on live WebSocket connections, attackers can execute administrative-level Gateway Remote Procedure Calls (RPCs).

Successful exploitation of this vulnerability grants an attacker full administrative control over the Gateway interface. Given the high CVSS score of 8.8, this poses a severe risk of unauthorized data access, system configuration changes, and potential compromise of the entire application infrastructure, leading to significant operational disruption.

Immediate Action: Upgrade all instances of OpenClaw to version 2026.5.18 or later to resolve the authorization cache issue.

Proactive Monitoring: Monitor WebSocket traffic for unusual RPC calls or unexpected administrative actions originating from unauthorized or restricted client profiles.

Compensating Controls: Restrict network access to the Control UI and Gateway interfaces to known, trusted IP ranges to minimize the attack surface until patching is complete.

Public Exploit Available: false

The severity of this vulnerability necessitates immediate attention. Organizations should prioritize updating to version 2026.5.18 to close the privilege escalation vector and prevent unauthorized administrative access to critical system components.