Skip to main content

OpenClaw EUVDEUVD-2026-26097

| CVE-2026-41388 MEDIUM
Incomplete Internal State Distinction (CWE-372)
2026-04-28 VulnCheck
6.3
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
6.3 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

6
Analysis Generated
Apr 28, 2026 - 20:07 vuln.today
CVSS changed
Apr 28, 2026 - 19:52 NVD
6.5 (MEDIUM) 6.3 (MEDIUM)
EUVD ID Assigned
Apr 28, 2026 - 19:30 euvd
EUVD-2026-26097
Analysis Generated
Apr 28, 2026 - 19:30 vuln.today
Patch released
Apr 28, 2026 - 19:30 nvd
Patch available
CVE Published
Apr 28, 2026 - 18:09 nvd
MEDIUM 6.3

Blast Radius

ecosystem impact
† from your stack dependencies † transitive graph · vuln.today resolves 4-path depth
  • 1 npm packages depend on openclaw (1 direct, 0 indirect)

Ecosystem-wide dependent count for version 2026.3.31.

DescriptionCVE.org

OpenClaw before 2026.3.31 contains a configuration management vulnerability where startup migration treats empty-array settings as missing values. Attackers can restart the application to rehydrate revoked Tlon configuration from file state, bypassing intended revocation controls.

AnalysisAI

OpenClaw before version 2026.3.31 allows remote attackers to bypass configuration revocation controls by restarting the application, which rehydrates revoked Tlon configuration settings from disk state due to improper handling of empty-array settings during startup migration. An attacker with network access and the ability to trigger application restarts can restore previously revoked authentication or authorization configurations without explicit re-enablement, potentially compromising intended security controls.

Technical ContextAI

OpenClaw's startup migration logic treats empty-array configuration values as missing rather than explicitly revoked, violating the principle of secure defaults in configuration management. When the application initializes, it compares in-memory settings against persisted file state; arrays set to empty during normal operation (indicating deliberate revocation of a Tlon configuration entry) are incorrectly interpreted as absent values and rehydrated from the last known file state. This occurs in the configuration management subsystem that handles Tlon configuration, a protocol or format used for authentication or authorization settings. The underlying issue (CWE-372: Incorrect Parsing of Numbers with Leading Zeros in File Formats) indicates that the application's configuration parser does not correctly distinguish between explicitly nullified state and default/missing state, likely due to inadequate serialization of null or empty sentinel values.

RemediationAI

Upgrade OpenClaw to version 2026.3.31 or later. The upstream fix is available via commit a4d72a83f01fedd35964c352e3473c7712a3511b (https://github.com/openclaw/openclaw/commit/a4d72a83f01fedd35964c352e3473c7712a3511b), which corrects the configuration parser to treat empty-array values as explicit revocation rather than missing state. If immediate upgrade is not feasible, implement application-level mitigations: (1) restrict the ability to restart OpenClaw to authorized administrators only, using OS-level access controls or orchestration platform policies - this limits the attack trigger to intentional administrator action; (2) audit Tlon configuration changes and maintain a separate audit log of revocations, independent of the application's in-memory state, so that any rehydration can be detected post-restart; (3) consider disabling automatic startup migration for Tlon settings if your deployment allows manual configuration initialization. Note that these workarounds do not eliminate the underlying vulnerability and are not substitutes for patching.

CVE-2026-28446 CRITICAL POC
9.4 Mar 05

Auth bypass in OpenClaw voice-call extension before 2026.2.1. EPSS 0.68%. PoC and patch available.

CVE-2026-33579 CRITICAL POC
9.4 Mar 31

Privilege escalation in OpenClaw (pre-2026.3.28) allows unauthenticated remote attackers to gain administrative access b

CVE-2026-32042 HIGH POC
8.8 Mar 21

OpenClaw versions 2026.2.22 through 2026.2.24 contain a privilege escalation vulnerability that allows authenticated att

CVE-2026-32051 HIGH POC
8.8 Mar 21

An authorization mismatch vulnerability in OpenClaw versions prior to 2026.3.1 allows authenticated users with operator.

CVE-2026-25253 HIGH POC
8.8 Feb 01

OpenClaw versions prior to 2026.1.29 automatically establish WebSocket connections to attacker-controlled gateway URLs e

CVE-2026-32846 HIGH POC
8.7 Mar 26

Path traversal in OpenClaw through version 2026.3.23 enables unauthenticated remote attackers to read arbitrary files in

CVE-2026-32064 HIGH POC
7.7 Mar 21

OpenClaw sandbox browser functionality launches x11vnc for noVNC observer sessions without requiring authentication, all

CVE-2026-32055 HIGH POC
7.6 Mar 21

OpenClaw versions before 2026.2.26 allow authenticated attackers to write arbitrary files outside the workspace director

CVE-2026-32056 HIGH POC
7.5 Mar 21

OpenClaw versions prior to 2026.2.22 contain a shell environment variable injection vulnerability in the system.run func

CVE-2026-32049 HIGH POC
7.5 Mar 21

OpenClaw versions prior to 2026.2.22 contain a resource exhaustion vulnerability where the application fails to consiste

CVE-2026-32048 HIGH POC
7.5 Mar 21

OpenClaw versions prior to 2026.3.1 contain a sandbox escape vulnerability that allows authenticated attackers with low

CVE-2026-25474 HIGH POC
7.5 Feb 19

OpenClaw versions 2026.1.30 and below fail to validate Telegram webhook secret tokens when `channels.telegram.webhookSec

Share

EUVD-2026-26097 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy