CVE-2026-27002

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.15

Description A configuration injection issue in the Docker tool sandbox could allow dangerous Docker options (bind mounts, host networking, unconfined profiles) to be applied, potentially enabling container escape or host data access. The affected versions lack restrictions on dangerous sandbox Docker settings and runtime enforcement during the construction of docker create arguments. Config-schema validation is absent for network=host, seccompProfile=unconfined, and apparmorProfile=unconfined.

Recommendations Do not configure agents.*.sandbox.docker.binds to mount system directories or Docker socket paths. Keep agents.*.sandbox.docker.network at none (default) or bridge. Do not use unconfined for seccomp/AppArmor profiles.