2 matches found
CVE-2026-22179
OpenClaw affected: macOS node-host system.run, versions prior to 2026.2.22. The root cause is an improper parsing of command substitution tokens that enables an allowlist bypass. Remote attackers could craft shell payloads using command substitution inside double-quoted text to execute non-allowl...
vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-22179 via openclaw (=0.0.1)
openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-22179 Source advisory: OSV:GHSA-9P38-94JF-HGJJ...