OpenClaw before 2026.3.31 contains an incomplete scope-clearing vulnerability in trusted-proxy authentication mode that allows operator.admin privilege escalati…

OpenClaw versions before 2026.3.31 contain an incomplete scope-clearing vulnerability in trusted-proxy authentication mode that enables privilege escalation to operator.admin level. The vulnerability occurs when attackers declare operator scopes on non-Control-UI clients, causing self-declared scopes to persist on identity-bearing authentication paths. This allows unauthorized privilege escalation through the trusted-proxy authentication mechanism. The issue has been addressed in version 2026.3.31 with proper scope clearing implementation.