CVE-2026-32971

CVSS v3.1

7.1

High

AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

OpenClaw before 2026.3.11 contains an approval-integrity vulnerability in node-host system.run approvals that displays extracted shell payloads instead of the executed argv. Attackers can place wrapper binaries and induce wrapper-shaped commands to execute local code after operators approve misleading command text.

Fix

UI Misrepresentation of Critical Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-451

Related Identifiers

CVE-2026-32971

Affected Products

Openclaw

CVE-2026-32971

Weakness Enumeration

Related Identifiers

Affected Products

References · 3