Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.7
OpenClaw tools.exec.safeBins doesn't validate sort command options correctly
CVE-2026-32059
Summary
A flaw in OpenClaw's safeBins feature allows attackers to bypass approval requirements by using shortened options in the sort command. This could lead to unauthorized execution of sort commands, potentially allowing attackers to access restricted data. Affected users should update to OpenClaw version 2026.2.23 to fix this issue.
Original title
OpenClaw version 2026.2.22-2 prior to 2026.2.23 tools.exec.safeBins validation for sort command fails to properly validate GNU long-option abbreviations, allowing attackers to bypass denied-flag ch...
Original description
OpenClaw version 2026.2.22-2 prior to 2026.2.23 tools.exec.safeBins validation for sort command fails to properly validate GNU long-option abbreviations, allowing attackers to bypass denied-flag checks via abbreviated options. Remote attackers can execute sort commands with abbreviated long options to skip approval requirements in allowlist mode.
nvd CVSS3.1
8.8
nvd CVSS4.0
8.7
Vulnerability type
CWE-863
Incorrect Authorization
Published: 11 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026