CVE-2026-31992

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.23 OpenClaw versions 2026.2.22 and earlier

Description The software contains an allowlist bypass issue in system.run guardrails. This allows authenticated operators to execute unintended commands. Specifically, when /usr/bin/env is allowlisted, attackers can use env -S to bypass policy analysis and execute shell wrapper payloads at runtime. The issue weakens expected safety behavior and can enable unintended command execution when untrusted content influences tool input. The vulnerability exists due to a parity issue between allowlist and runtime execution semantics for shell wrappers. The vulnerable component is the allowlist mode within the system.run function.

Recommendations OpenClaw versions prior to 2026.2.23 should be updated to version 2026.2.23 or later.