Description
OpenClaw before 2026.5.26 contains an exec allowlist bypass vulnerability allowing authenticated operators to execute wrapper-level side effects outside allowlisted command intent. Attackers can craft command requests that bypass allowlist validation by leveraging transparent command wrappers to perform unintended operations.
Published: 2026-06-16
Score: 2.3 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

OpenClaw before 2026.5.26 contains a flaw that allows authenticated operators to bypass the exec allowlist, enabling them to craft command requests that trigger wrapper‑level side effects outside of the intended command set. This effectively permits execution of unintended operations, exposing the platform to unauthorized command execution. The underlying weakness is catalogued as CWE‑184.

Affected Systems

The vulnerability affects all versions of OpenClaw prior to 2026.5.26. Users running an earlier release are susceptible regardless of operating system or deployment environment.

Risk and Exploitability

The CVSS score of 2.3 indicates low severity, and the EPSS score of less than 1 % suggests a very low probability of exploitation. The vulnerability is not listed in CISA KEV. The likely attack vector requires an authenticated operator who can submit crafted command requests to the system. While the risk of exploitation is considered low, the impact is significant if an authenticated user abuses the bypass to run unauthorized commands.

Generated by OpenCVE AI on June 17, 2026 at 21:24 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade OpenClaw to version 2026.5.26 or later, which eliminates the allowlist bypass.
  • If an upgrade is not immediately possible, restrict operator privileges that permit crafting custom command requests, and disable transparent command wrappers to reduce the attack surface.
  • Review and enforce strict input validation on command execution endpoints, ensuring only allowlisted commands are processed and rejecting any non‑allowlisted invocations.
  • Monitor system logs for unusual command execution patterns to detect potential abuse of the allowlist bypass.

Generated by OpenCVE AI on June 17, 2026 at 21:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 16 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Description OpenClaw before 2026.5.26 contains an exec allowlist bypass vulnerability allowing authenticated operators to execute wrapper-level side effects outside allowlisted command intent. Attackers can craft command requests that bypass allowlist validation by leveraging transparent command wrappers to perform unintended operations.
Title OpenClaw < 2026.5.26 - Exec Allowlist Bypass via Transparent Command Wrappers
First Time appeared Openclaw
Openclaw openclaw
Weaknesses CWE-184
CPEs cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*
Vendors & Products Openclaw
Openclaw openclaw
References
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N'}

cvssV4_0

{'score': 2.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Openclaw Openclaw
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-16T19:34:00.760Z

Reserved: 2026-06-10T21:21:12.125Z

Link: CVE-2026-53848

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T19:17:01.920

Modified: 2026-06-16T20:42:46.200

Link: CVE-2026-53848

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-16T19:45:03Z

Weaknesses
  • CWE-184

    Incomplete List of Disallowed Inputs