Incomplete List of Disallowed Inputs in OpenClaw - CVE-2026-22175
Published: May 1, 2026
Vulnerability identifier: #VU128787
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2026-22175
CWE-ID: CWE-184
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: OpenClaw
Affected software:
OpenClaw
OpenClaw
Detailed vulnerability description
The vulnerability allows a remote user to bypass command execution restrictions.
The vulnerability exists due to an incomplete list of disallowed inputs in exec approval wrapper analysis when processing busybox or toybox shell wrapper invocations with sh -c. A remote user can invoke arbitrary payloads through the same multiplexer wrapper to bypass command execution restrictions.
The issue occurs in allowlist mode after an allow-always approval is granted.
How to mitigate CVE-2026-22175
Install security update from vendor's website.