Description
OpenClaw before 2026.5.18 contains an approval display truncation vulnerability allowing authenticated users to hide command suffixes from approvers. Attackers can submit oversized exec commands with benign prefixes and malicious suffixes to execute unauthorized operations after approval.
Published: 2026-06-12
Score: 8.5 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability in OpenClaw prior to version 2026.5.18 allows an authenticated attacker to truncate the approval display of an exec command. By crafting an exec request with a benign prefix and malicious suffix that exceeds the displayed length, the attacker can conceal the true intent of the command and gain execution privileges after the approver approves a truncated command. This flaw effectively bypasses the approval process and enables the attacker to execute arbitrary operations on the system.

Affected Systems

The affected product is OpenClaw issued by OpenClaw, version 2026.5.18 and earlier. The default platform is Node.js. Only installations that expose the exec approval interface to authenticated users are susceptible.

Risk and Exploitability

With a CVSS base score of 8.5, this issue is high severity. Although the EPSS score is not available, the vulnerability is not presently listed in CISA's KEV catalog, indicating that it is not a widely exploited vulnerability. However, the flaw requires valid user credentials and the ability to submit an oversized exec command, making it likely to be leveraged in environments where users have write access to run commands. Successful exploitation would give attackers full control of the targeted system.

Generated by OpenCVE AI on June 12, 2026 at 23:39 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade OpenClaw to version 2026.5.18 or later to apply the vendor fix.
  • Implement validation on the exec command length or remove the ability to submit commands exceeding a safe threshold to prevent truncation from hiding malicious payloads.
  • Audit and limit the privileges of users with access to the exec approval flow, and enable monitoring of oversized command submissions to detect attempts to abuse the truncation feature.

Generated by OpenCVE AI on June 12, 2026 at 23:39 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 12 Jun 2026 22:15:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.5.18 contains an approval display truncation vulnerability allowing authenticated users to hide command suffixes from approvers. Attackers can submit oversized exec commands with benign prefixes and malicious suffixes to execute unauthorized operations after approval.
Title OpenClaw < 2026.5.18 - Command Truncation in Exec Approval Display
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-451
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H'}

cvssV4_0

{'score': 8.5, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-12T21:56:55.064Z

Reserved: 2026-06-10T21:16:58.211Z

Link: CVE-2026-53829

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-12T22:16:54.347

Modified: 2026-06-12T22:16:54.347

Link: CVE-2026-53829

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-13T00:15:19Z

Weaknesses
  • CWE-451

    User Interface (UI) Misrepresentation of Critical Information