CVE-2026-53824

Summary

OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue executing commands during monitor refresh windows. Attackers can exploit stale token acceptance to invoke slash command behavior briefly after token revocation, potentially executing unauthorized actions depending on operator configuration.

Affected Software

VendorProductVersion RangeStatus
OpenClawOpenClaw0 < 2026.4.24affected
OpenClawOpenClaw2026.4.24unaffected

Weaknesses

  • CWE-613: Insufficient Session Expiration

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References