wid-sec-w-2026-0551 · Published 2026-02-26 · View on BSI CERT-Bund ↗

OpenClaw: Multiple Vulnerabilities

CVSS 9.9 CRITICAL

Risk Summary

OpenClaw versions prior to 2026.2.26 contain an approval bypass vulnerability in system.run execution that allows attackers to execute commands from unintended filesystem locations by rebinding writable parent symlinks in the current working directory after approval. An attacker can modify mutable parent symlink path components between approval and execution time to redirect command execution to a different location while preserving the visible working directory string.

CVEs (8)

CVE-2026-27545 CVE-2026-28363 CVE-2026-32014 CVE-2026-32036 CVE-2026-32058 CVE-2026-32059 CVE-2026-32067 CVE-2026-32895

Affected Vendors

Open Source

Affected Products (2)

Open Source · OpenClaw <2026.2.26

Open Source · OpenClaw 2026.2.26

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more