Main Vulnerability Database Vulnerabilities #VU126435

Incorrect authorization in OpenClaw - #VU126435

Published: April 17, 2026

Vulnerability identifier: #VU126435

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: N/A

CWE-ID: CWE-863

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: OpenClaw

Affected software:
OpenClaw

Detailed vulnerability description

The vulnerability allows a remote user to execute unintended busybox or toybox applets.

The vulnerability exists due to incorrect authorization in exec approval binding when handling execution of busybox or toybox multi-call binaries. A remote user can invoke a busybox or toybox command to execute unintended busybox or toybox applets.

Opaque multi-call binaries can obscure which applet or script-like behavior will actually run.

Remediation

Install security update from vendor's website.

Sources

https://github.com/openclaw/openclaw/security/advisories/GHSA-2cq5-mf3v-mx44

Incorrect authorization in OpenClaw - #VU126435

Detailed vulnerability description

Remediation

Sources

Please verify you're human