📄 Description (English)
OpenClaw before 2026.3.24 contains an incorrect authorization vulnerability in the POST /reset-profile endpoint that allows authenticated callers with operator.write access to browser.request to bypass profile mutation restrictions. Attackers can invoke POST /reset-profile through the browser.request surface to stop the running browser, close Playwright connections, and move profile directories to Trash, crossing intended privilege boundaries.
🤖 AI Executive Summary
OpenClaw versions before 2026.3.24 contain a critical authorization bypass vulnerability (CVE-2026-35653) in the POST /reset-profile endpoint that allows authenticated operators to escalate privileges and manipulate browser profiles. Attackers with operator.write access can invoke the endpoint through browser.request to terminate browser processes, close connections, and delete profile directories, crossing privilege boundaries. This vulnerability affects Node.js-based OpenClaw deployments and requires immediate patching.
📄 Description (Arabic)
🤖 AI Intelligence Analysis Analyzed: Apr 26, 2026 11:50
🇸🇦 Saudi Arabia Impact Assessment
This vulnerability poses significant risk to Saudi organizations utilizing OpenClaw for browser automation and testing, particularly in: (1) Banking sector (SAMA-regulated institutions) using OpenClaw for automated testing of digital banking platforms and payment systems; (2) Government agencies (NCA oversight) employing OpenClaw for security testing and compliance automation; (3) Telecommunications providers (STC, Mobily) using browser automation for service testing; (4) E-commerce and fintech companies conducting automated quality assurance. The privilege escalation capability enables attackers to disrupt critical testing infrastructure, compromise test data integrity, and potentially access sensitive profile information containing credentials or authentication tokens.
🏢 Affected Saudi Sectors
Banking and Financial Services
Government and Public Administration
Telecommunications
E-commerce and Fintech
Healthcare (if using OpenClaw for testing)
Energy and Utilities
🎯 MITRE ATT&CK Techniques
T1548 - Abuse Elevation Control Mechanism (privilege escalation via authorization bypass)
T1548.002 - Abuse Elevation Control Mechanism: Bypass User Account Control
T1078 - Valid Accounts (authenticated attacker with operator.write)
T1078.001 - Valid Accounts: Default Accounts
T1562 - Impair Defenses (disabling browser connections and processes)
T1485 - Data Destruction (profile directory deletion)
T1529 - System Shutdown/Reboot (browser process termination)
T1070 - Indicator Removal (moving files to Trash)
⚖️ Saudi Risk Score (AI)
8.2
/ 10.0
🔧 Remediation Steps (English)
IMMEDIATE ACTIONS:
1. Identify all OpenClaw deployments in your environment and document versions currently in use
2. Restrict network access to OpenClaw instances to authorized personnel only
3. Review access logs for POST /reset-profile endpoint invocations and suspicious operator.write activity
4. Audit all accounts with operator.write permissions and revoke unnecessary access
PATCHING GUIDANCE:
1. Upgrade OpenClaw to version 2026.3.24 or later immediately
2. Test patches in non-production environments before deployment
3. Implement staged rollout to minimize service disruption
4. Verify patch application by checking version numbers post-deployment
COMPENSATING CONTROLS (if immediate patching not possible):
1. Implement network-level access controls restricting POST /reset-profile endpoint to trusted IP ranges
2. Deploy WAF rules to block POST /reset-profile requests from untrusted sources
3. Enable detailed logging and monitoring of all /reset-profile endpoint calls
4. Implement role-based access control (RBAC) to minimize operator.write privilege distribution
5. Monitor for browser process terminations and profile directory deletions
DETECTION RULES:
1. Alert on POST /reset-profile requests from non-administrative sources
2. Monitor for rapid browser process terminations following API calls
3. Track profile directory deletions and moves to Trash
4. Flag operator.write permission grants to new accounts
5. Monitor Playwright connection closures in correlation with /reset-profile calls
🔧 خطوات المعالجة (العربية)
الإجراءات الفورية:
1. حدد جميع نشرات OpenClaw في بيئتك وتوثيق الإصدارات المستخدمة حاليًا
2. قيد الوصول إلى الشبكة لمثيلات OpenClaw للموظفين المصرح لهم فقط
3. راجع سجلات الوصول لاستدعاءات نقطة نهاية POST /reset-profile والنشاط المريب operator.write
4. تدقيق جميع الحسابات التي تحتوي على أذونات operator.write وإلغاء الوصول غير الضروري
إرشادات التصحيح:
1. ترقية OpenClaw إلى الإصدار 2026.3.24 أو أحدث على الفور
2. اختبر التصحيحات في بيئات غير الإنتاج قبل النشر
3. تنفيذ نشر مرحلي لتقليل انقطاع الخدمة
4. تحقق من تطبيق التصحيح بفحص أرقام الإصدار بعد النشر
الضوابط البديلة (إذا لم يكن التصحيح الفوري ممكنًا):
1. تنفيذ ضوابط الوصول على مستوى الشبكة تقيد نقطة نهاية POST /reset-profile بنطاقات IP موثوقة
2. نشر قواعد WAF لحظر طلبات POST /reset-profile من مصادر غير موثوقة
3. تفعيل السجلات التفصيلية والمراقبة لجميع استدعاءات نقطة النهاية /reset-profile
4. تنفيذ التحكم في الوصول القائم على الأدوار (RBAC) لتقليل توزيع امتيازات operator.write
5. مراقبة عمليات إنهاء المتصفح وحذف دليل الملفات الشخصية
قواعد الكشف:
1. تنبيه على طلبات POST /reset-profile من مصادر غير إدارية
2. مراقبة عمليات إنهاء المتصفح السريعة بعد استدعاءات API
3. تتبع حذف دليل الملفات الشخصية والنقل إلى سلة المحذوفات
4. وضع علامة على منح أذونات operator.write للحسابات الجديدة
5. مراقبة إغلاق اتصالات Playwright بالارتباط مع استدعاءات /reset-profile
📋 Regulatory Compliance Mapping
🟢 NCA ECC 2024
ECC 2024 A.5.1.1 - Access Control Policies (privilege escalation violation)
ECC 2024 A.5.2.1 - User Registration and Access Rights Management
ECC 2024 A.5.3.1 - Management of Privileged Access Rights
ECC 2024 A.8.1.1 - User Endpoint Devices (browser automation security)
ECC 2024 A.12.4.1 - Event Logging (detection and monitoring requirements)
🔵 SAMA CSF
SAMA CSF ID.AM-1 - Asset Management (inventory of OpenClaw deployments)
SAMA CSF PR.AC-1 - Access Control Policy (privilege boundary enforcement)
SAMA CSF PR.AC-4 - Access Rights Management (operator.write privilege review)
SAMA CSF DE.AE-1 - Anomalies and Events Detection (suspicious endpoint activity)
SAMA CSF DE.CM-1 - Detection Processes and Tools (monitoring /reset-profile calls)
🟡 ISO 27001:2022
ISO 27001:2022 A.5.2 - Information Security Policies and Procedures
ISO 27001:2022 A.6.2 - Competence (secure configuration of OpenClaw)
ISO 27001:2022 A.8.1 - User Endpoint Devices (browser automation security)
ISO 27001:2022 A.8.2 - Privileged Access Rights (operator.write management)
ISO 27001:2022 A.8.3 - Information Access Restriction (authorization bypass prevention)
ISO 27001:2022 A.12.4 - Logging (detection and audit trail requirements)
🟣 PCI DSS v4.0.1
PCI DSS 2.1 - Configuration Standards (secure OpenClaw configuration)
PCI DSS 6.2 - Security Patches (timely patching requirement)
PCI DSS 7.1 - Access Control (privilege escalation prevention)
PCI DSS 10.2 - User Identity (logging of privileged access)
🔗 References & Sources 4
🔗
https://github.com/openclaw/openclaw/commit/4dcc39c25c6cc63fedfd004f52d173716576fcf0
disclosure@vulncheck.com
Patch
🔗
https://github.com/openclaw/openclaw/commit/e7d11f6c33e223a0dd8a21cfe01076bd76cef87a
disclosure@vulncheck.com
Exploit
Mitigation
Vendor Advisory
🔗
https://github.com/openclaw/openclaw/security/advisories/GHSA-xp9r-prpg-373r
disclosure@vulncheck.com
Exploit
Mitigation
Vendor Advisory
🔗
https://www.vulncheck.com/advisories/openclaw-incorrect-authorization-in-post-reset-pro...
disclosure@vulncheck.com
Third Party Advisory
📦 Affected Products / CPE 1 entries
openclaw:openclaw