What is CVE-2026-53807?

CVE-2026-53807 is a high-severity vulnerability, classified under Incorrect Authorization. CVSS score: 8.8/10. Published 2026-06-11.

How severe is CVE-2026-53807?

High severity. CVSS v3 base score is 8.8 out of 10.

CVE-2026-53807

CVE-2026-53807

OpenClaw before 2026.5.6 contains an authorization bypass vulnerability in Telegram interactive callbacks that allows authenticated users to skip commands.allowFrom validation. Attackers can invoke affected callbacks to mark themselves as…

Vulnerability class: Broken Access Control

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Weakness classification (CWE)

CWE-863 — Incorrect Authorization

References

disclosure@vulncheck.com
disclosure@vulncheck.com

Frequently asked questions

What is CVE-2026-53807?: CVE-2026-53807 is a high-severity vulnerability, classified under Incorrect Authorization. CVSS score: 8.8/10. Published 2026-06-11.
How severe is CVE-2026-53807?: High severity. CVSS v3 base score is 8.8 out of 10.