CVE-2026-32047

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.22

Description The software contains a flaw in the system.run function that permits attackers to execute commands not included in the allowlist. This bypass is achieved by exploiting shell line-continuation within command substitution. Specifically, attackers can inject `` followed by a newline and ( inside double quotes, which causes the shell runtime to interpret the payload as $(...) and execute arbitrary subcommands. This allows bypassing shell-wrapper analysis.

Recommendations Update to version 2026.2.22 or later.