CVE-2026-22169

CVSS v3.1

6.4

Vector

AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in the safeBins configuration that allows attackers to invoke external helpers through the compress-program option. When sort is explicitly added to tools.exec.safeBins, remote attackers can bypass intended safe-bin approval constraints by leveraging the compress-program parameter to execute unauthorized external programs.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2026-22169

Affected Products

Openclaw

CVE-2026-22169

Weakness Enumeration

Related Identifiers

Affected Products

References · 4