CVE-2026-25593

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.1.20

Description An unauthenticated local client could leverage the Gateway WebSocket API to modify configuration settings through the config.apply function. Specifically, the ability to set unsafe cliPath values, which are subsequently used for command discovery, allows for command injection with the privileges of the gateway user. The config.apply function accepted raw JSON and wrote it to disk after schema validation. The cliPath values were not restricted to safe executable names or paths. Command discovery utilized a shell invocation when resolving executables.

Recommendations Upgrade to version 2026.1.20 or later. If an immediate upgrade is not possible, enable gateway.auth and avoid using custom cliPath values.