Path Hijacking Vulnerability in OpenClaw by OpenClaw
CVE-2026-32015

7.3HIGH

Key Information:

Vendor

Openclaw

Status
Openclaw
Vendor
CVE Published:
19 March 2026

What is CVE-2026-32015?

OpenClaw versions 2026.1.21 prior to 2026.2.19 are affected by a vulnerability that allows attackers to exploit the tools.exec.safeBins component. This path hijacking vulnerability enables malicious actors to manipulate the process PATH resolution, effectively bypassing allowlist checks. By controlling the gateway process PATH or launch environment, attackers can execute trojan binaries disguised with allowlisted names, undermining executable validation mechanisms. To mitigate this issue, users should update to the latest version of OpenClaw.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

OpenClaw 2026.1.21 < 2026.2.19

OpenClaw 2026.2.19

References

https://github.com/openclaw/openclaw/security/advisories/...
third-party-advisory
https://github.com/openclaw/openclaw/commit/28bac46c92069...
patch
https://www.vulncheck.com/advisories/openclaw-path-hijack...
third-party-advisory

CVSS V4

Score:
7.3
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Adnan Jakati (@jackhax)
JSON
.