A vulnerability identified as critical has been detected in OpenClaw up to 2026.5.21 . Affected by this issue is some unknown functionality of the component Device Token Handler . The manipulation leads to authentication bypass by spoofing. This vulnerability is uniquely identified as CVE-2026-53817 . The attack is possible to be carried out remotely. No exploit exists. You should upgrade the affected component.