CVE-2026-28463

Name of the Vulnerable Software and Affected Versions openclaw versions prior to 2026.2.14

Description The OpenClaw exec-approvals allowlist validation checks tokens before expansion, but execution uses shell expansion. This allows safe binaries like head, tail, or grep to read arbitrary local files through glob patterns or environment variables. An authorized caller or prompt-injection attack can exploit this to disclose files readable by the gateway or node process when host execution is enabled in allowlist mode. The issue is configuration-dependent and is not exercised by default settings. The vulnerable component uses the sh -c shell for execution.

Recommendations Update to version 2026.2.14 or later.