CVE-2026-53817 | OpenClaw up to 2026.5.21 Device Token authentication spoofing (GHSA-chr9-m4q2-76hw)

A vulnerability identified as critical has been detected in OpenClaw up to 2026.5.21. Affected by this issue is some unknown functionality of the component Device Token Handler. The manipulation leads to authentication bypass by spoofing.

This vulnerability is uniquely identified as CVE-2026-53817. The attack is possible to be carried out remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More