CVE-2026-41909 | OpenClaw up to 2026.4.19 Paired-device Pairing Management authorization (GHSA-xrq9-jm7v-g9h7)

A vulnerability was found in OpenClaw up to 2026.4.19. It has been rated as critical. Impacted is an unknown function of the component Paired-device Pairing Management. The manipulation leads to incorrect authorization.

This vulnerability is uniquely identified as CVE-2026-41909. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.VulDB Recent EntriesRead More