CVE-2026-28460 MEDIUM

CVE-2026-28460: OpenClaw < 2026.2.22 - Allowlist Bypass via Shell Line-Continuation Command Substitution in system.run

Vendor Openclaw
Product OpenClaw
Weakness CWE-78
Published March 19, 2026
Last update March 25, 2026
View on NVD All CVEs

CVSS base score

6.0/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N

What the vulnerability does

01Description

OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in system.run that allows attackers to execute non-allowlisted commands by splitting command substitution using shell line-continuation characters. Attackers can bypass security analysis by injecting $\\ followed by a newline and opening parenthesis inside double quotes, causing the shell to fold the line continuation into executable command substitution that circumvents approval boundaries.

Key dates

02Disclosure timeline

March 19, 2026 CVE published
March 25, 2026 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-41673 Remote Command Injection in send_sms Action Due to Improper Input Neutralization CVE-2026-32608 Glances has a Command Injection via Process Names in Action Command Templates CVE-2026-27938 WPGraphQL Repo Vulnerable to Command Injection via Unsanitized GitHub Actions Expression in Release Workflow CVE-2022-31137 Unauthenticated Remote Code Execution in Roxy-WI CVE-2024-5227 TP-Link Omada ER605 PPTP VPN username Command Injection Remote Code Execution Vulnerability