2 matches found
CVE-2026-32059
OpenClaw version 2026.2.22-2 prior to 2026.2.23 tools.exec.safeBins validation for sort command fails to properly validate GNU long-option abbreviations, allowing attackers to bypass denied-flag checks via abbreviated options. Remote attackers can execute sort commands with abbreviated long optio...
CVE-2026-32059
OpenClaw contains a vulnerability in tools.exec.safeBins for sort: in versions up to 2026.2.22-2, GNU long-option abbreviations could bypass deny checks in allowlist mode, allowing remote actors to execute abbreviated long options without approval. The issue is caused by how long options are vali...