Koko9Xxx

**Name of the Vulnerable Software and Affected Versions** OpenClaw versions prior to 2026.1.29 **Description** OpenClaw is a personal AI assistant with an OS command injection issue. The `sshNodeCommand` function improperly escapes user-supplied project paths, leading to potential arbitrary command execution on the remote SSH host when the `cd` command fails. Additionally, the `parseSSHTarget` function lacks validation for SSH target strings, allowing an attacker to execute arbitrary commands on the local machine by crafting a target string starting with a dash, such as `-oProxyCommand=...`. The vulnerability exists in the macOS application's SSH remote connection handling within the `CommandResolver.swift` file. Exploitation can occur if an attacker can influence a user's remote connection settings. **Recommendations** Upgrade to OpenClaw version 2026.1.29 or later.