6 matches found
EUVD-2026-14597
OpenClaw versions 2026.2.26 before 2026.3.1 contain a current working directory injection vulnerability in Windows wrapper resolution for .cmd/.bat files that allows shell execution fallback. Attackers can manipulate the current working directory to alter wrapper resolution behavior and achieve...
CVE-2026-32912
Rejected reason: This CVE ID has been rejected...
CVE-2026-32912
...
CVE-2026-32912
OpenClaw 2016.2.26 exposes a local a vulnerability in Windows wrapper resolution for .cmd/.bat files, where current working directory manipulation can change wrapper resolution and lead to command execution integrity loss. Affected: OpenClaw versions prior to 2026.3.1. Root cause: current working...
PT-2026-27244
OpenClaw versions 2026.2.26 before 2026.3.1 contain a current working directory injection vulnerability in Windows wrapper resolution for .cmd/.bat files that allows shell execution fallback. Attackers can manipulate the current working directory to alter wrapper resolution behavior and achieve...
CpenClaw's ACPX Windows wrapper shell fallback allowed cwd injection in specific paths
Summary On Windows ACPX paths, wrapper resolution for .cmd/.bat could fall back to shell execution in ways that allowed cwd influence to alter execution behavior. Impact In affected Windows ACPX configurations, this could enable command execution integrity loss through cwd-influenced wrapper...