Command injection in OpenClaw - CVE-2026-27001
Published: May 4, 2026
Vulnerability identifier: #VU129422
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2026-27001
CWE-ID: CWE-77
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: OpenClaw
Affected software:
OpenClaw
OpenClaw
Detailed vulnerability description
The vulnerability allows a remote user to disclose sensitive information or influence agent behavior.
The vulnerability exists due to improper neutralization of special elements in the agent system prompt when embedding the current working directory path into LLM prompts. A remote user can cause OpenClaw to run inside a specially crafted directory name to disclose sensitive information or influence agent behavior.
The crafted directory name may contain control or format characters, including newlines or Unicode bidi or zero-width markers.
How to mitigate CVE-2026-27001
Install security update from vendor's website.