Vulnerability Description
OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in system.run that allows attackers to execute non-allowlisted commands by splitting command substitution using shell line-continuation characters. Attackers can bypass security analysis by injecting $\\ followed by a newline and opening parenthesis inside double quotes, causing the shell to fold the line continuation into executable command substitution that circumvents approval boundaries.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openclaw | Openclaw | < 2026.2.22 |
Related Weaknesses (CWE)
References
- https://github.com/openclaw/openclaw/commit/3f0b9dbb36c86e308267924c0d3d4a4e1fc4Patch
- https://github.com/openclaw/openclaw/security/advisories/GHSA-9868-vxmx-w862MitigationVendor Advisory
- https://www.vulncheck.com/advisories/openclaw-allowlist-bypass-via-shell-line-coThird Party Advisory
FAQ
What is CVE-2026-28460?
CVE-2026-28460 is a vulnerability with a CVSS score of 7.1 (HIGH). OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in system.run that allows attackers to execute non-allowlisted commands by splitting command substitution using shell lin...
How severe is CVE-2026-28460?
CVE-2026-28460 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-28460?
Check the references section above for vendor advisories and patch information. Affected products include: Openclaw Openclaw.