Vulnerabilities ›

CVE-2026-41379

High

CWE-863 — Weakness Type

                    Published: Apr 28, 2026                      ·  Modified: May 5, 2026                      ·  Source: NVD                

CVSS v3

7.1

🔗 NVD Official

📄 Description (English)

OpenClaw before 2026.3.28 contains a privilege escalation vulnerability allowing authenticated operators with write permissions to access admin-class Talk Voice configuration persistence. Attackers with operator.write privileges can exploit the chat.send endpoint to reach and modify sensitive voice configuration settings intended for administrators only.

🤖 AI Executive Summary

OpenClaw versions before 2026.3.28 contain a privilege escalation vulnerability (CVE-2026-41379) that allows authenticated operators with write permissions to access and modify admin-level Talk Voice configuration settings through the chat.send endpoint. With a CVSS score of 7.1, this vulnerability poses a significant risk to organizations using OpenClaw for communication platforms, particularly those managing sensitive voice configurations. Immediate patching to version 2026.3.28 or later is strongly recommended to prevent unauthorized administrative access.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: May 9, 2026 10:48

🇸🇦 Saudi Arabia Impact Assessment

This vulnerability primarily impacts Saudi organizations in the telecommunications sector (STC, Zain, Mobily) and government agencies using OpenClaw for internal communication platforms. Financial institutions and healthcare providers utilizing OpenClaw for secure voice communications are also at risk. The privilege escalation could allow malicious insiders or compromised operator accounts to modify voice configuration settings, potentially enabling unauthorized call routing, interception, or system manipulation. Government entities under NCA oversight and SAMA-regulated financial institutions face heightened compliance risks if voice communication integrity is compromised.

🏢 Affected Saudi Sectors

Telecommunications (STC, Zain, Mobily) Banking and Financial Services (SAMA-regulated) Government and Public Administration (NCA oversight) Healthcare Energy and Utilities

🎯 MITRE ATT&CK Techniques

T1548 - Abuse Elevation Control Mechanism T1548.002 - Abuse Elevation Control Mechanism: Bypass User Account Control T1078 - Valid Accounts T1078.001 - Valid Accounts: Default Accounts T1098 - Account Manipulation T1098.002 - Account Manipulation: Exchange Email Delegate Permissions T1110 - Brute Force T1556 - Modify Authentication Process

⚖️ Saudi Risk Score (AI)

7.4

/ 10.0

🔧 Remediation Steps (English)

IMMEDIATE ACTIONS:

1. Identify all OpenClaw instances in your environment and document their current versions

2. Restrict operator.write permissions to only trusted personnel pending patch deployment

3. Implement network segmentation to limit access to the chat.send endpoint

4. Enable comprehensive audit logging for all chat.send endpoint activities



PATCHING GUIDANCE:

1. Upgrade OpenClaw to version 2026.3.28 or later immediately

2. Test patches in a non-production environment first

3. Schedule patching during maintenance windows with minimal operational impact

4. Verify patch installation by confirming version number post-deployment



COMPENSATING CONTROLS (if immediate patching not possible):

1. Implement API gateway rules to restrict chat.send endpoint access to specific IP ranges

2. Deploy Web Application Firewall (WAF) rules to monitor and block suspicious chat.send requests

3. Enforce multi-factor authentication for all operator accounts

4. Implement role-based access control (RBAC) to prevent operator.write privilege assignment to non-essential users



DETECTION RULES:

1. Monitor for chat.send endpoint requests originating from operator accounts accessing voice configuration parameters

2. Alert on any modifications to admin-class Talk Voice configuration settings by non-admin accounts

3. Track privilege escalation attempts through chat.send endpoint

4. Log and review all operator.write permission assignments and usage patterns

🔧 خطوات المعالجة (العربية)

الإجراءات الفورية:

1. حدد جميع مثيلات OpenClaw في بيئتك وقم بتوثيق إصداراتها الحالية

2. قيّد صلاحيات operator.write للموظفين الموثوقين فقط قبل نشر التصحيح

3. طبّق تقسيم الشبكة لتحديد الوصول إلى نقطة نهاية chat.send

4. فعّل تسجيل التدقيق الشامل لجميع أنشطة نقطة نهاية chat.send

إرشادات التصحيح:

1. قم بترقية OpenClaw إلى الإصدار 2026.3.28 أو أحدث فوراً

2. اختبر التصحيحات في بيئة غير إنتاجية أولاً

3. جدول التصحيح خلال نوافذ الصيانة بأقل تأثير تشغيلي

4. تحقق من تثبيت التصحيح بتأكيد رقم الإصدار بعد النشر

الضوابط البديلة (إذا لم يكن التصحيح الفوري ممكناً):

1. طبّق قواعد بوابة API لتقييد وصول نقطة نهاية chat.send إلى نطاقات IP محددة

2. نشّر قواعد جدار حماية تطبيقات الويب (WAF) لمراقبة وحجب طلبات chat.send المريبة

3. فرض المصادقة متعددة العوامل لجميع حسابات المشغلين

4. طبّق التحكم في الوصول القائم على الأدوار (RBAC) لمنع تعيين صلاحيات operator.write للمستخدمين غير الأساسيين

قواعد الكشف:

1. راقب طلبات نقطة نهاية chat.send الناشئة من حسابات المشغلين التي تصل إلى معاملات إعدادات الصوت

2. أصدر تنبيهات عند أي تعديلات على إعدادات Talk Voice من فئة المسؤول بواسطة حسابات غير إدارية

3. تتبع محاولات تصعيد الامتيازات من خلال نقطة نهاية chat.send

4. سجّل واستعرض جميع تعيينات صلاحيات operator.write وأنماط الاستخدام

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

ECC 2024 A.9.2.1 - User access management and privilege escalation prevention ECC 2024 A.9.4.3 - Access control to information and other associated assets ECC 2024 A.8.2.1 - Information security policies and procedures ECC 2024 A.12.4.1 - Event logging and monitoring

🔵 SAMA CSF

SAMA CSF ID.AM-2 - Software and hardware asset management SAMA CSF PR.AC-1 - Access control policy and procedures SAMA CSF PR.AC-4 - Access rights and privileges management SAMA CSF DE.CM-1 - System monitoring and anomaly detection

🟡 ISO 27001:2022

ISO 27001:2022 A.5.15 - Access control ISO 27001:2022 A.8.2 - Information security policies ISO 27001:2022 A.8.3 - Organization of information security ISO 27001:2022 A.8.22 - Monitoring, measurement, analysis and evaluation

🟣 PCI DSS v4.0.1

PCI DSS 2.1 - Restrict access to system components by business need PCI DSS 7.1 - Limit access to system components by business need-to-know PCI DSS 10.2 - Implement automated audit trails for all system components

🔗 References & Sources 3

🔗

https://github.com/openclaw/openclaw/commit/e34694733fc64931ed4a543c73d84ad3435d5df1

disclosure@vulncheck.com

Patch

🔗

https://github.com/openclaw/openclaw/security/advisories/GHSA-3q42-xmxv-9vfr

disclosure@vulncheck.com

Vendor Advisory

🔗

https://www.vulncheck.com/advisories/openclaw-privilege-escalation-via-chat-send-to-adm...

disclosure@vulncheck.com

Third Party Advisory

📦 Affected Products / CPE 1 entries

openclaw:openclaw

📊 CVSS Score

7.1

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

Attack VectorN — None / Network

Attack ComplexityL — Low / Local

Privileges RequiredL — Low / Local

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityL — Low / Local

IntegrityH — High

AvailabilityN — None / Network

📋 Quick Facts

Severity High

CVSS Score7.1

CWECWE-863

EPSS0.02%

Exploit No

Patch ✓ Yes

Published 2026-04-28

Source Feed nvd

🇸🇦 Saudi Risk Score

7.4

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

patch-available CWE-863

🏢 Vendor Advisories

🔗 https://github.com/openclaw/openclaw/security/adviso...

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2026-41379

💬 Comments

Introduce Yourself

Sign In Required