OPENCLAW , introduced in November, has been shown to take control of a user’s computer and access a wide range of resources, with security patches released for three high-severity vulnerabilities earlier this week. One flaw, CVE-2026-33579, is rated from 8.1 to 9.8 out of 10 and allows anyone with pairing privileges to gain administrative status, enabling full control of the OpenClaw instance without user interaction beyond the initial pairing step.
According to Blink, an attacker who already holds operator[.]pairing scope can silently approve device pairing requests that ask for operator[.]admin scope, leading to a full instance takeover and potential data exfiltration and pivoting across connected services. The patch release came before a formal CVE listing, giving alert attackers a two-day headstart, and Blink noted that 63 per cent of 135,000 OpenClaw instances found on the Internet were running without authentication.
The guidance to assume compromise is well-founded, with officials advising users to inspect recent /pair approval events and reconsider OpenClaw usage to mitigate potential threat actor access to a network kingdom.