VYPR
← All advisories
High severity8.8NVD Advisory· Published Jun 11, 2026

CVE-2026-53817

CVE-2026-53817

Description

OpenClaw before 2026.5.22 allows network attackers to spoof locality and obtain persistent admin device tokens via Control UI pairing.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

OpenClaw before 2026.5.22 allows network attackers to spoof locality and obtain persistent admin device tokens via Control UI pairing.

Vulnerability

OpenClaw versions before 2026.5.22 contain a locality validation flaw in the Control UI pairing process [1]. In LAN-bound gateway or shared-token Control UI deployments, the pairing logic accepts locality signals (e.g., network proximity or shared-token presence) as sufficient proof of authorization for generating device tokens. This insufficient validation allows a caller with network access to the Control UI pairing endpoint to spoof locality information and obtain a device token [1][2].

Exploitation

An attacker must already have network access to the Control UI pairing path, such as being on the same LAN or possessing a shared token [1]. The attacker then spoofs locality information during the pairing exchange, tricking the server into issuing a durable admin-capable device token [1][2]. No additional authentication or user interaction is required beyond the initial network foothold.

Impact

A successful exploit converts a temporary or shared Control UI access path into a persistent administrative device token [1]. This token survives token rotation of the shared gateway token and grants continued admin-level control until the paired device is explicitly removed [1].

Mitigation

The first stable patched version is 2026.5.22 [1]. Users should upgrade to 2026.5.22 or later. For older deployments, remove any unexpected paired devices and avoid exposing Control UI pairing paths on networks with untrusted clients [1]. No workaround other than upgrading is available.

References
  1. Control UI locality spoofing could mint a durable admin device token
  2. OpenClaw < 2026.5.22 - Control UI Locality Spoofing in Device Pairing

AI Insight generated on Jun 11, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • OpenClaw/Openclawinferred2 versions
    <2026.5.22+ 1 more
    • (no CPE)range: <2026.5.22
    • (no CPE)range: <2026.5.22

Patches

1
a374c3a5bfd5

test(matrix): stabilize thread binding sweep persistence

https://github.com/OpenClaw/OpenClawPeter SteinbergerMay 24, 2026Fixed in 2026.5.22via release-tag
commit
1 file changed · +5 3
  • extensions/matrix/src/matrix/thread-bindings.test.ts+5 3 modified
    @@ -330,12 +330,14 @@ describe("matrix thread bindings", () => {
         placement: "current",
       });
 
+      const sendCallCount = sendMessageMatrixMock.mock.calls.length;
       await vi.advanceTimersByTimeAsync(61_000);
 
       await vi.waitFor(
-        () => expect(sendMessageMatrixMock.mock.calls.length).toBeGreaterThanOrEqual(2),
+        () =>
+          expect(sendMessageMatrixMock.mock.calls.length).toBeGreaterThanOrEqual(sendCallCount + 2),
         {
-          interval: 1,
+          interval: 10,
           timeout: 1_000,
         },
       );
@@ -346,7 +348,7 @@ describe("matrix thread bindings", () => {
           expect(persisted.version).toBe(1);
           expect(persisted.bindings).toEqual([]);
         },
-        { interval: 1, timeout: 100 },
+        { interval: 10, timeout: 1_000 },
       );
     } finally {
       vi.useRealTimers();

Vulnerability mechanics

Root cause

"Insufficient locality-derived trust validation in Control UI pairing allows spoofed locality information to be accepted."

Attack vector

According to the advisory, an attacker with network access can spoof locality information during Control UI pairing. The insufficient locality-derived trust validation allows the attacker to convert temporary shared access into durable admin-capable device tokens that survive token rotation. No further details about the network path or payload shape are visible in the supplied patch.

Affected code

The patch touches only test infrastructure (`extensions/matrix/src/matrix/thread-bindings.test.ts`), adjusting timer intervals and assertion logic for a thread-binding persistence test. No production code is changed, so the advisory's description of a locality validation vulnerability in Control UI pairing cannot be confirmed from this diff.

What the fix does

The supplied patch adjusts test-polling intervals and assertion logic in a thread-binding persistence test to reduce flakiness. It does not modify any production code related to Control UI pairing, locality validation, or token management. The advisory states that the vulnerability is fixed in OpenClaw before 2026.5.22, but the commit shown here does not contain the actual security fix.

Preconditions

  • networkNetwork access to the Control UI pairing endpoint
  • inputAbility to spoof locality information

Generated on Jun 11, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

2

News mentions

0

No linked articles in our index yet.