CVE-2026-53832

Description

OpenClaw before 2026.5.18 contains an identity header validation vulnerability allowing local same-host callers to forge trusted-proxy identity headers. Attackers with access to the proxy-facing Gateway port can supply forged identity headers to assume operator identity and potentially escalate privileges.

CVSS breakdown

CVSS 4.0

Attack Vector

Local

Attack Complexity

Low

Attack Requirements

Present

Privileges Required

None

User Interaction

None

Confidentiality (Vulnerable System)

High

Integrity (Vulnerable System)

High

Availability (Vulnerable System)

None

Confidentiality (Subsequent System)

None

Integrity (Subsequent System)

None

Availability (Subsequent System)

None

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Affected products

openclaw / openclaw0 – 2026.5.18
openclaw / openclaw2026.5.18 – 2026.5.18

References

VENDOR_ADVISORYhttps://github.com/openclaw/openclaw/security/advisories/GHSA-rggc-m335-3wvj
VENDOR_ADVISORYhttps://www.vulncheck.com/advisories/openclaw-identity-header-forgery-via-trusted-proxy-configuration