Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/19 10:6 p.m.2 views

CVE-2026-32009

OpenClaw versions prior to 2026.2.24 contain a policy bypass vulnerability in the safeBins allowlist evaluation that trusts static default directories including writable package-manager paths like /opt/homebrew/bin and /usr/local/bin. An attacker with write access to these trusted directories can...

7CVSS6.1AI score0.00133EPSS
Exploits0References4
CVE
CVE
added 2026/03/19 10:6 p.m.14 views

CVE-2026-32009

OpenClaw prior to 2026.2.24 contains a policy bypass in the safeBins allowlist evaluation that trusts static default directories, including writable paths like /opt/homebrew/bin and /usr/local/bin. An attacker with write access to these trusted directories can place a malicious binary with the sa...

7.8CVSS6.1AI score0.00133EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/18 1:34 a.m.5 views

CVE-2026-22169

OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in the safeBins configuration that allows attackers to invoke external helpers through the compress-program option. When sort is explicitly added to tools.exec.safeBins, remote attackers can bypass intended safe-bin...

7.1CVSS6AI score0.00197EPSS
Exploits0References4
OSV
OSV
added 2026/03/03 10:8 p.m.4 views

GHSA-G75X-8QQM-2VXP OpenClaw's `tools.exec.safeBins` PATH-hijack allowed trojan binaries to bypass allowlist checks

Summary tools.exec.safeBins allowlist checks could be bypassed by PATH-hijacked binaries, allowing execution of attacker-controlled trojan binaries under an allowlisted executable name. Affected Packages / Versions - Package: openclaw npm - Latest published version at triage time: 2026.2.17 -...

7.8CVSS6.1AI score0.00128EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.5 views

PT-2026-26396

Name of the Vulnerable Software and Affected Versions OpenClaw versions 2026.1.21 through 2026.2.18 Description The tools.exec.safeBins component contains a flaw where allowlist checks can be bypassed through path hijacking. This allows attackers to execute trojan binaries with allowlisted names,...

7.8CVSS6AI score0.00128EPSS
Exploits0References9
OSV
OSV
added 2026/02/27 3:17 a.m.3 views

CVE-2026-28363

In OpenClaw before 2026.2.23, tools.exec.safeBins validation for sort could be bypassed via GNU long-option abbreviations such as --compress-prog in allowlist mode, leading to approval-free execution paths that were intended to require approval. Only an exact string such as --compress-program was...

9.9CVSS6.1AI score0.00495EPSS
Exploits0References3
Rows per page
Query Builder