CVE-2026-29608 — MEDIUM (6.7)

Vulnerability Description

OpenClaw 2026.3.1 contains an approval integrity vulnerability in system.run node-host execution where argv rewriting changes command semantics. Attackers can place malicious local scripts in the working directory to execute unintended code despite operator approval of different command text.

CVSS Score

6.7

MEDIUM

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Openclaw	Openclaw	2026.3.1

Related Weaknesses (CWE)

CWE-88

References

https://github.com/openclaw/openclaw/commit/dded569626b0d8e7bdab10b5e7528b6caf73Patch
https://github.com/openclaw/openclaw/security/advisories/GHSA-h3rm-6x7g-882fVendor Advisory
https://www.vulncheck.com/advisories/openclaw-approval-integrity-bypass-via-systThird Party Advisory

FAQ

What is CVE-2026-29608?

CVE-2026-29608 is a vulnerability with a CVSS score of 6.7 (MEDIUM). OpenClaw 2026.3.1 contains an approval integrity vulnerability in system.run node-host execution where argv rewriting changes command semantics. Attackers can place malicious local scripts in the work...

How severe is CVE-2026-29608?

CVE-2026-29608 has been rated MEDIUM with a CVSS base score of 6.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-29608?

Check the references section above for vendor advisories and patch information. Affected products include: Openclaw Openclaw.