HIGHCVE-2026-22175Published 2026-03-18Modified 2026-03-18CNA VulnCheck

CVE-2026-22175: OpenClaw < 2026.2.23 - Exec Approval Bypass via Unrecognized Multiplexer Shell Wrappers

OpenClaw versions prior to 2026.2.23 contain an exec approval bypass vulnerability in allowlist mode where allow-always grants could be circumvented through unrecognized multiplexer shell wrappers like busybox and toybox sh -c commands. Attackers can exploit this by invoking arbitrary payloads under the same multiplexer wrapper to satisfy stored allowlist rules, bypassing intended execution restrictions.

CVSS v4.0: 7.1
Severity: HIGH
Fixed in: 2026.2.23
Affected Products: 1

Fix available

2026.2.23

Patch commits

Patch Commit

Affected packages

OpenClaw / OpenClaw
< 2026.2.23 (from 0)
Fixed in 2026.2.23

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N

References

GitHub Security Advisory (GHSA-gwqp-86q6-w47g)
Patch Commit
VulnCheck Advisory: OpenClaw < 2026.2.23 - Exec Approval Bypass via Unrecognized Multiplexer Shell Wrappers

Metrics

Fix available