Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.6
OpenClaw updater script allows malicious commands to run
CVE-2026-26323
GHSA-m7x8-2w3w-pr42
Summary
A bug in the OpenClaw updater script for contributors and maintainers allows a malicious actor to run arbitrary commands on your system. This happens when you run the updater in a source code repository with a specially crafted commit message. You can be safe by avoiding running the updater in a source checkout or waiting for the next version, which will fix the issue.
What to do
- Update steipete openclaw to version 2026.2.14.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| steipete | openclaw | > 2026.1.8 , <= 2026.2.14 | 2026.2.14 |
| openclaw | openclaw | > 2026.1.8 , <= 2026.2.14 | – |
Original title
OpenClaw has a command injection in maintainer clawtributors updater
Original description
### Summary
Command injection in the maintainer/dev script `scripts/update-clawtributors.ts`.
### Impact
Affects contributors/maintainers (or CI) who run `bun scripts/update-clawtributors.ts` in a source checkout that contains a malicious commit author email (e.g. crafted `@users.noreply.github.com` values).
Normal CLI usage is not affected (`npm i -g openclaw`): this script is not part of the shipped CLI and is not executed during routine operation.
### Affected Versions
- Source checkouts: tags `v2026.1.8` through `v2026.2.13` (inclusive)
- Version range (structured): `>= 2026.1.8, < 2026.2.14`
### Details
The script derived a GitHub login from `git log` author metadata and interpolated it into a shell command (via `execSync`). A malicious commit record could inject shell metacharacters and execute arbitrary commands when the script is run.
### Fix
- Fix commit: `a429380e337152746031d290432a4b93aa553d55`
- Planned patched version: `2026.2.14`
### Credits
Thanks @scanleale and @MegaManSec (https://joshua.hu) of [AISLE Research Team](https://aisle.com/) for reporting.
Command injection in the maintainer/dev script `scripts/update-clawtributors.ts`.
### Impact
Affects contributors/maintainers (or CI) who run `bun scripts/update-clawtributors.ts` in a source checkout that contains a malicious commit author email (e.g. crafted `@users.noreply.github.com` values).
Normal CLI usage is not affected (`npm i -g openclaw`): this script is not part of the shipped CLI and is not executed during routine operation.
### Affected Versions
- Source checkouts: tags `v2026.1.8` through `v2026.2.13` (inclusive)
- Version range (structured): `>= 2026.1.8, < 2026.2.14`
### Details
The script derived a GitHub login from `git log` author metadata and interpolated it into a shell command (via `execSync`). A malicious commit record could inject shell metacharacters and execute arbitrary commands when the script is run.
### Fix
- Fix commit: `a429380e337152746031d290432a4b93aa553d55`
- Planned patched version: `2026.2.14`
### Credits
Thanks @scanleale and @MegaManSec (https://joshua.hu) of [AISLE Research Team](https://aisle.com/) for reporting.
nvd CVSS3.1
8.8
nvd CVSS4.0
8.6
Vulnerability type
CWE-78
OS Command Injection
- https://nvd.nist.gov/vuln/detail/CVE-2026-26323
- https://github.com/advisories/GHSA-m7x8-2w3w-pr42
- https://github.com/openclaw/openclaw/commit/a429380e337152746031d290432a4b93aa55... Patch
- https://github.com/openclaw/openclaw/releases/tag/v2026.2.14 Product Release Notes
- https://github.com/openclaw/openclaw/security/advisories/GHSA-m7x8-2w3w-pr42 Vendor Advisory
Published: 18 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026