CVE-2026-27183

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.3.7

Description OpenClaw contains a flaw in its system.run dispatch-wrapper handling that allows attackers to bypass shell wrapper approval requirements. The issue arises because the approval classifier and execution planner use different depth-boundary rules. Specifically, using four transparent dispatch wrappers, such as repeated env invocations, before /bin/sh -c can bypass security=allowlist approval gating by misaligning classification with execution planning. The system.run function is involved in this issue.

Recommendations Update OpenClaw to version 2026.3.7 or later.