Impact
OpenClaw prior to 2026.4.29 is vulnerable to a path traversal flaw in its install helper that lets the workspace .env file override the npm_execpath setting used during bundled runtime dependency installation. When an attacker with workspace access places a malicious npm_execpath entry, the package manager will execute unintended local executables at install time, giving the attacker arbitrary code execution in the build environment. This flaw is defined as CWE‑426 and can compromise confidentiality, integrity, and availability of the development or CI workflow.
Affected Systems
The vulnerability affects deployments of OpenClaw that are older than version 2026.4.29. Any instance running 2026.4.28 or earlier, regardless of the operating system, is susceptible when an attacker can modify or create a workspace .env file.
Risk and Exploitability
The CVSS score of 7 indicates a high severity of the vulnerability, while the EPSS score of less than 1% suggests a low current probability of exploitation. The issue is not listed in CISA’s KEV catalogue, further indicating limited widespread exploitation. Attackers would need local workspace access and the ability to write to the .env file; thus the vector is inferred to be a trusted insider or compromised workstation. Although the likelihood of a public exploit is low at present, the potential impact warrants prompt remediation.
OpenCVE Enrichment
Github GHSA