THREAT SENTINEL
Back to Dashboard
Hacking IncidentsCritical

CVE-2026-32987: Critical Severity Vulnerability Disclosed

Monday, March 30, 2026
Global
NVD

Summary

OpenClaw before 2026.3.13 allows bootstrap setup codes to be replayed during device pairing verification in src/infra/device-bootstrap.ts. Attackers can verify a valid bootstrap code multiple times before approval to escalate pending pairing scopes, including privilege escalation to operator.admin.

Threat Analysis

**Threat Overview:** OpenClaw before 2026.3.13 allows bootstrap setup codes to be replayed during device pairing verification in src/infra/device-bootstrap.ts. Attackers can verify a valid bootstrap code multiple times before approval to escalate pending pairing scopes, including privilege escalation to operator.admin.

**CVE ID:** CVE-2026-32987 **CVSS Score:** 9.8 (CRITICAL)

**Recommended Mitigations:** - Review and apply vendor security updates - Monitor for signs of exploitation - Implement network segmentation and access controls - Enable logging and monitoring for affected systems

Last updated: Mar 30, 2026, 08:22 AM

Daily Intelligence

Stay Ahead of Threats

Subscribe to receive daily threat briefings delivered to your inbox. Be the first to know about emerging security risks.

No spamUnsubscribe anytimeDaily at 9 AM