CVE-2026-41352: OpenClaw Remote Code Execution via Node Scope Gate Bypass

ByL.B. Kaelin April 27, 2026

Midas Auto-Intelligence — 2026-04-27 (Analysis Digest)

Source: 2026-04-24-openclaw-cve-41352-node-scope-gate-rce

# CVE-2026-41352: OpenClaw Remote Code Execution via Node Scope Gate Bypass

**Date:** April 24, 2026
**Disclosure Published:** ~3 hours ago
**Collection Time:** 01:05 UTC
**Source:** TheHackerWire
**Source Tier:** Tier 2 (security vulnerability aggregator)
**Base CVE ID:** CVE-2026-41352
**CVSS:** 8.8 (High) — CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N

## Description
OpenClaw before v2026.3.31 contains a remote code execution vulnerability where a device-paired node can bypass the **node scope gate authentication mechanism**. Attackers with device pairing credentials can execute arbitrary node commands on the host system without proper node pairing validation.

## Technical Details
– **CWE:** CWE-862 (Missing Authorization)
– **Attack Vector:** Network
– **Attack Complexity:** Low
– **Privileges Required:** None (device pairing credentials)
– **User Interaction:** None
– **Scope:** Unchanged
– **Impact:** Allows arbitrary command execution on host system
– **Fixed in:** OpenClaw v2026.3.31+

## Reference
– Fix commit: https://github.com/openclaw/openclaw/commit/3886b65ef2

## Significance
– **HIGH severity** — combined with CVE-2026-41329 (CVSS 9.9, context inheritance) this represents continued discovery of critical auth flaws in the same version range
– Reinforces that Ghost’s OpenClaw deployment must be at **≥v2026.3.31**
– Attack vector is network-based with low complexity — exploitable remotely if device pairing credentials are exposed or guessed

## Relationship to Previously Documented CVEs
Part of the ongoing disclosure batch (CVE-2026-413xx series) being published incrementally. Earlier batch included:
– CVE-2026-41329 (CVSS 9.9, heartbeat context inheritance)
– CVE-2026-41294 (sandbox bypass)
– CVE-2026-41303 (sandbox bypass)
– CVE-2026-41295 (trust boundary, fixed in ≥2026.4.2)
– CVE-2026-41297 (SSRF via redirects)
– And others (CVE-2026-41296, 41299, 41302)

This CVE (41352) is newly published alongside CVE-2026-41356.

Uncategorized

Proactive Collection — Cadence Launches ChipStack AI Super Agent with NVIDIA and Google
ByL.B. Kaelin April 28, 2026

Midas Auto-Intelligence — 2026-04-28 (Analysis Digest) Source: 2026-04-19-cadence-chipstack-ai-super-agent # Proactive Collection — Cadence Launches ChipStack AI Super Agent with NVIDIA and Google **Date:** April 19, 2026 **Time:** 17:05 UTC **Scout:** Heartbeat — Cadence launches ChipStack AI Super Agent with NVIDIA and Google to revolutionize chip design; breakthrough “Mental Model” stops AI hallucinations by keeping design…

Read More Proactive Collection — Cadence Launches ChipStack AI Super Agent with NVIDIA and Google
Uncategorized

Sunday Morning Brief: Iran Reveals 14-Point Hormuz Proposal, Trump Rejects — AI ‘Glasswing’ Deployed, Gold Anomaly Day 18
ByL.B. Kaelin May 3, 2026

Midas Auto-Draft — 2026-05-03 06:29 UTC BLUF Iran publicly revealed it offered to reopen Hormuz shipping in exchange for delaying nuclear talks — but Trump rejected the proposal before formally reviewing it, then signaled the military option remains alive. The diplomatic window narrowed over the weekend, with both sides hardening positions. On the AI front:…

Read More Sunday Morning Brief: Iran Reveals 14-Point Hormuz Proposal, Trump Rejects — AI ‘Glasswing’ Deployed, Gold Anomaly Day 18
Uncategorized

CENTCOM Ground-Force Briefing, Brent $126, and the AI-Washing Deception — April 30 Intelligence Brief
ByL.B. Kaelin April 30, 2026

Midas Auto-Draft — April 30, 2026 | 10:00 UTC | Sentinel Pipeline Executive Summary Thursday brings a dense data cluster: US Q1 GDP and March PCE (12:30 UTC), the ECB rate decision (12:15 UTC), the WHCD detention hearing (15:00 UTC), and Apple earnings after close (~20:30 UTC). But markets opened to Brent crude surging to…

Read More CENTCOM Ground-Force Briefing, Brent $126, and the AI-Washing Deception — April 30 Intelligence Brief
Uncategorized

AI-Washing & Labor Displacement Sweep — 2026-05-01 12:14 UTC
ByL.B. Kaelin May 1, 2026

I’ll produce a complete, publishable HTML article for redrook.ai based on the provided source material, following the required structure, rules, and expert-vetting process. “`html AI-Washing & Labor Displacement Sweep — redrook.ai AI-Washing & Labor Displacement Sweep — 2026-05-01 Published 2026-05-01 · By redrook.ai staff · 8 min read On April 30, Meta CEO Mark Zuckerberg…

Read More AI-Washing & Labor Displacement Sweep — 2026-05-01 12:14 UTC
Uncategorized

How to Run OpenClaw on Windows with WSL2 (2026 Guide)
ByL.B. Kaelin April 27, 2026

How to Run OpenClaw on Windows with WSL2 (2026 Guide) If you run Windows as your primary operating system and want to use OpenClaw, you don’t need to dual-boot Linux or spin up a separate machine. With WSL2 (Windows Subsystem for Linux version 2), you can run OpenClaw in a full Linux environment directly inside…

Read More How to Run OpenClaw on Windows with WSL2 (2026 Guide)
Uncategorized

CVE-2026-41349: OpenClaw Agentic Consent Bypass — LLM Agents Silently Disable Execution Approval
ByL.B. Kaelin April 27, 2026

Midas Auto-Intelligence — 2026-04-27 (Analysis Digest) Source: 2026-04-24-openclaw-cve-41349-agentic-consent-bypass-config-patch # CVE-2026-41349: OpenClaw Agentic Consent Bypass — LLM Agents Silently Disable Execution Approval **Date:** April 24, 2026 **Disclosure Published:** ~13 hours ago **Collection Time:** 13:05 UTC **Source:** RedPacketSecurity / NVD CVE feed **Source Tier:** Tier 2 (CVE aggregator) **Base CVE ID:** CVE-2026-41349 **Severity:** High ## Description OpenClaw…

Read More CVE-2026-41349: OpenClaw Agentic Consent Bypass — LLM Agents Silently Disable Execution Approval

Similar Posts