CRITICAL 9.8 npm
OpenClaw: Unbound bootstrap setup codes allow privilege escalation during pairing
GHSA-gg9v-mgcp-v6m7 · CVE-2026-41386
Published · Modified
Description
Summary
Bootstrap setup codes were not bound to the intended device role and scopes, allowing first-use privilege escalation during pairing.
Current Maintainer Triage
- Status: open
- Normalized severity: high
- Assessment: Real first-use bootstrap privilege-escalation bug fixed and shipped in v2026.3.22+, so keep open for publication with current severity.
Affected Packages / Versions
- Package:
openclaw(npm) - Latest published npm version:
2026.3.31 - Vulnerable version range:
<=2026.3.13-1 - Patched versions:
>= 2026.3.22 - First stable tag containing the fix:
v2026.3.22
Fix Commit(s)
a600c72ed7d0045a27f58bf031d2b36ecb0141c9— 2026-03-22T23:57:15-07:00
OpenClaw thanks @tdjackey for reporting.
References
- WEB https://github.com/openclaw/openclaw/security/advisories/GHSA-gg9v-mgcp-v6m7
- ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2026-41386
- WEB https://github.com/openclaw/openclaw/commit/a600c72ed7d0045a27f58bf031d2b36ecb0141c9
- PACKAGE https://github.com/openclaw/openclaw
- WEB https://www.vulncheck.com/advisories/openclaw-privilege-escalation-via-unbound-bootstrap-setup-codes
Ready to move
Start Securing
Free, no credit card | First findings in minutes