Command Injection Vulnerability in OpenClaw by OpenClaw Inc.
CVE-2026-53822
8.7HIGH
What is CVE-2026-53822?
OpenClaw versions prior to 2026.5.18 are susceptible to a command injection vulnerability that arises from a flaw in the shell wrapper's argument handling. This vulnerability allows attackers to manipulate command arguments after an allowlist approval process. As a result, they can execute unauthorized command shapes, effectively bypassing established security measures and potentially compromising the integrity of the system.
Affected Version(s)
OpenClaw 0 < 2026.5.18
OpenClaw 2026.5.18
