CVE-2026-62218
EUVD-2026-4510617.07.2026, 02:18
OpenClaw 2026.1.20 before 2026.5.27 contain an authorization bypass vulnerability in the device.pair.approve feature that allows lower-trust callers to bypass role-management checks. Attackers can perform actions requiring stronger authorization by reaching the affected feature through configured input paths.Enginsight
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| openclaw | openclaw | 2026.1.20 ≤ 𝑥 < 2026.5.27 | CNA |
Common Weakness Enumeration
Vulnerability Media Exposure