Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.9
OpenClaw bypasses allowlist and permits file write with short-option payloads
GHSA-3x3x-h76w-hp98
Summary
A security issue in OpenClaw allows attackers to bypass security checks and write files on a system when certain options are used. This affects older versions of OpenClaw, but patches are available for newer versions. Update OpenClaw to a version newer than 2026.2.17 to fix this issue.
What to do
- Update openclaw to version 2026.2.19.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | openclaw | <= 2026.2.19 | 2026.2.19 |
Original title
OpenClaw exec allowlist safeBins short-option bypass could permit arbitrary file write
Original description
### Summary
OpenClaw `exec` allowlist/safeBins policy could be bypassed with attached short-option payloads (for example `sort -o/tmp/poc`), enabling file-write operations while still satisfying safeBins checks.
### Affected Packages / Versions
- Package: `openclaw` (npm)
- Affected versions: `<= 2026.2.17`
- Latest published vulnerable version: `2026.2.17`
- Patched in: `2026.2.19`
### Impact
When `tools.exec.security=allowlist` and `tools.exec.safeBins` included affected binaries, attached short-option payloads could bypass safeBins argument validation and permit file-write behavior that should have been denied.
### Fix Commit(s)
- cfe8457a0f4aae5324daec261d3b0aad1461a4bc
- bafdbb6f112409a65decd3d4e7350fbd637c7754
- fec48a5006eab37c6a5821726ccaeec886486b13
OpenClaw thanks @FailButWin and @Redgrave961 for reporting.
OpenClaw `exec` allowlist/safeBins policy could be bypassed with attached short-option payloads (for example `sort -o/tmp/poc`), enabling file-write operations while still satisfying safeBins checks.
### Affected Packages / Versions
- Package: `openclaw` (npm)
- Affected versions: `<= 2026.2.17`
- Latest published vulnerable version: `2026.2.17`
- Patched in: `2026.2.19`
### Impact
When `tools.exec.security=allowlist` and `tools.exec.safeBins` included affected binaries, attached short-option payloads could bypass safeBins argument validation and permit file-write behavior that should have been denied.
### Fix Commit(s)
- cfe8457a0f4aae5324daec261d3b0aad1461a4bc
- bafdbb6f112409a65decd3d4e7350fbd637c7754
- fec48a5006eab37c6a5821726ccaeec886486b13
OpenClaw thanks @FailButWin and @Redgrave961 for reporting.
ghsa CVSS4.0
6.9
Vulnerability type
CWE-184
- https://github.com/openclaw/openclaw/security/advisories/GHSA-3x3x-h76w-hp98
- https://github.com/openclaw/openclaw/commit/bafdbb6f112409a65decd3d4e7350fbd637c...
- https://github.com/openclaw/openclaw/commit/cfe8457a0f4aae5324daec261d3b0aad1461...
- https://github.com/openclaw/openclaw/commit/fec48a5006eab37c6a5821726ccaeec88648...
- https://github.com/advisories/GHSA-3x3x-h76w-hp98
Published: 3 Mar 2026 · Updated: 7 Mar 2026 · First seen: 6 Mar 2026