What is CVE-2026-45006?

CVE-2026-45006 is a high-severity (CVSS 8.8) improper access control vulnerability in OpenClaw gateway config operations published May 11, 2026.

How does CVE-2026-45006 work?

Compromised models can bypass an incomplete denylist in config.apply and config.patch to persist malicious configuration changes that survive restart.

What OpenClaw version fixes CVE-2026-45006?

Upgrade to OpenClaw v2026.4.23 or later to patch this vulnerability.

Is there a public exploit for CVE-2026-45006?

No public proof-of-concept exploit was available at time of disclosure.

← Back to dashboard

clawsmith.com/signal/cve-2026-45006-gateway-improper-access-control-cvss-88

⚠ IssueWide OpenLive

CVE-2026-45006: OpenClaw Gateway Improper Access Control (CVSS 8.8)

Q: What can CVE-2026-45006 affect?

The vulnerability can affect command execution, network behavior, credentials, and operator policies through persistent config modification.

High-severity improper access control in OpenClaw gateway config.apply and config.patch operations. Compromised models can bypass incomplete denylist to persist malicious config changes affecting command execution, network behavior, credentials, and operator policies. Changes survive restart. Published May 11, 2026.

Product Idea from this Signal

A reverse proxy that locks OpenClaw gateway configuration against model-driven mutation by enforcing an allowlist of immutable protected settings

8 ▲

OpenClaw gateway config.patch and config.apply endpoints have been exploited through denylist bypass (CVE-2026-45006, CVE-2026-45001, CVE-2026-45004). Compromised models persist malicious config changes to sandbox policy, auth/TLS, and SSRF rules that survive restart. This tool flips the model from denylist to allowlist, intercepting all config mutations at the network layer.

SECURITYREVERSE-PROXYOPEN-SOURCEDEVTOOL

CompetitiveView Opportunity →