CVE-2026-28392
Published: 05 March 2026
Summary
CVE-2026-28392 is a high-severity Incorrect Authorization (CWE-863) vulnerability in Openclaw Openclaw. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 13.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Threat & Defense at a Glance
Threat & Defense Details
Likely Mitigating ControlsAI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Periodic review and update of procedures reduces incorrect authorization implementations over time.
Supervision identifies cases where authorization logic incorrectly permits unauthorized actions.
Defining permitted attribute values and auditing modifications reduces the chance of incorrect authorization outcomes due to tampered or missing labels.
The authorization process and usage restrictions help prevent incorrect authorization for remote access types.
Establishing configuration and connection requirements helps ensure correct rather than incorrect authorization for wireless access.
Establishing connection authorization processes for mobile devices helps ensure authorization decisions are correctly implemented rather than incorrect.
Monitoring account use, notifying on changes, and reviewing accounts for compliance corrects incorrect authorization assignments.
Ensures authorization decisions for external system use are correctly implemented and enforced.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
The CVE describes unauthenticated remote exploitation of an internet-facing Slack integration (dmPolicy=open) via slash commands, directly enabling T1190 (Exploit Public-Facing Application) for initial unauthorized access and T1068 (Exploitation for Privilege Escalation) to bypass authorization and execute restricted privileged commands.
NVD Description
OpenClaw versions prior to 2026.2.14 contain a privilege escalation vulnerability in the Slack slash-command handler that incorrectly authorizes any direct message sender when dmPolicy is set to open (must be configured). Attackers can execute privileged slash commands via direct message…
more
to bypass allowlist and access-group restrictions.
Deeper analysisAI
OpenClaw versions prior to 2026.2.14 contain a privilege escalation vulnerability (CVE-2026-28392, CWE-863: Incorrect Authorization) in the Slack slash-command handler. The flaw arises when the dmPolicy is configured to open, causing the handler to incorrectly authorize any sender of a direct message. This affects OpenClaw deployments integrated with Slack, with a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N), indicating high integrity impact from network-accessible exploitation without user interaction.
Unauthenticated attackers (PR:N) can exploit this by sending a direct message containing a privileged slash command to a targeted OpenClaw instance with dmPolicy set to open. Successful exploitation bypasses allowlist and access-group restrictions, allowing execution of privileged commands that would otherwise be restricted, resulting in unauthorized privilege escalation within the Slack integration.
Mitigation requires upgrading to OpenClaw version 2026.2.14 or later, as detailed in the GitHub security advisory (GHSA-v773-r54f-q32w) and the referenced commit (f19eabee54c49e9a2e264b4965edf28a2f92e657) that addresses the authorization logic. Additional guidance appears in the Vulncheck advisory, emphasizing configuration review of dmPolicy to avoid the open setting where possible.
Details
- CWE(s)