CVE-2026-32909

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.19

Description The software contains a command injection issue within the tools.exec.safeBins component. This allows attackers to bypass restrictions intended for stdin-only operations. Specifically, the use of sort output flags or recursive grep flags can be exploited. Attackers can perform arbitrary file writes using sort -o or recursive file reads using grep -R, effectively circumventing the safe-bin execution restrictions.

Recommendations Update to version 2026.2.19 or later.