What is CVE-2026-32922 in OpenClaw?

CVE-2026-32922 is a critical privilege escalation vulnerability (CVSS 9.9) in OpenClaw's device.token.rotate function that allows any paired device with operator.pairing scope to mint operator.admin tokens, leading to remote code execution.

How severe is CVE-2026-32922?

Extremely severe — CVSS 9.9 out of 10. It allows full compromise of the OpenClaw gateway and all connected nodes with minimal prerequisites.

Which OpenClaw versions are affected by CVE-2026-32922?

All OpenClaw versions before 2026.3.11 are affected. Update immediately to v2026.3.11 or later.

How many OpenClaw instances are exposed to CVE-2026-32922?

Censys identified 21,639 exposed OpenClaw instances publicly accessible on the internet, many with default configurations.

What is the fix for CVE-2026-32922?

Update to OpenClaw v2026.3.11+, which adds a scopeIntersection function enforcing caller-scope subsetting in device pairing. Also restrict operator.pairing scope access.

Who discovered CVE-2026-32922?

Security researcher tdjackey reported the vulnerability. GitHub Issue #20702 contains reproduction steps detailed enough to serve as a proof-of-concept.

← Back to dashboard

clawsmith.com/signal/cve-2026-32922-privilege-escalation-token-rotation

⚠ IssueUnknownSecurityLive

CVE-2026-32922: Critical Privilege Escalation in OpenClaw Token Rotation (CVSS 9.9)

Token rotation function in device.token.rotate lacks scope validation, allowing any paired device with operator.pairing scope to mint operator.admin tokens and achieve RCE on all connected nodes. CVSS 9.9, published March 29 2026. 21,639 exposed instances identified by Censys.

Product Idea from this Signal

A security service that auto-patches OpenClaw CVEs within hours of disclosure before attackers exploit them

3.7k ▲

OpenClaw shipped 9 CVEs in 4 days (March 2026) including a CVSS 9.9 privilege escalation affecting 135K+ exposed instances. Most operators have no way to know which CVEs affect their version, no automated patching, and no coordination between the flood of advisories (156+ total) and their actual attack surface. This tool continuously monitors CVE feeds, maps each advisory to your installed version and enabled features, and applies safe mitigations automatically while queuing risky patches for human approval.

SECURITYCLIDEVTOOLOPEN-SOURCESYSADMIN

CompetitiveView Opportunity →