HIGH SeverityCVSS 4.07.7CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CVE-2026-43569

Last updated May 06, 2026 · Published May 05, 2026

Description

OpenClaw before 2026.4.9 contains an authentication bypass vulnerability allowing untrusted workspace plugins to be auto-enabled during non-interactive onboarding when provider auth choices are shadowed. Attackers can exploit this by crafting malicious workspace plugins that are automatically selected and enabled during authentication setup without explicit user consent.

Affected products

1 listed

OpenClaw:OpenClaw

Mappings

CWE

CWE-829

CAPEC

None listed.

Research

AuthenticationA threat-focused guide to authentication, covering attack paths, design pitfalls, and concrete defenses from…

Guides

Supply Chain Security FundamentalsSBOMs, dependency verification, supplier assessment, and provenance for development teams.
JWT Security Best PracticesWhat to validate, rotate, and avoid in real systems.
OAuth 2.0 Security Best PracticesCommon pitfalls in PKCE, tokens, and redirect handling.

Training

Dependency and Supply Chain ManagementSBOMs, lock files, and surviving the next big supply chain attack.
Artifact Signing and ProvenanceSigstore, SLSA, and proving your software is what you say it is.
Authentication PatternsOAuth 2.1, passkeys, WebAuthn, and JWTs - modern identity for modern apps.

CVE-2026-43569

Description

Affected products

Mappings

Related