CVE-2026-31996
Received Received - Intake
Input Validation Bypass in OpenClaw Allows Arbitrary File Access

Publication date: 2026-03-19

Last updated on: 2026-03-25

Assigner: VulnCheck

Description
OpenClaw versions prior to 2026.2.19 tools.exec.safeBins contains an input validation bypass vulnerability that allows attackers to execute unintended filesystem operations through sort output flags or recursive grep flags. Attackers with command execution access can leverage sort -o flag for arbitrary file writes or grep -R flag for recursive file reads, circumventing intended stdin-only restrictions.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-19
Last Modified
2026-03-25
Generated
2026-06-16
AI Q&A
2026-03-19
EPSS Evaluated
2026-06-15
NVD
CVE-2026-31996
EUVD
EUVD-2026-13031
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openclaw openclaw to 2026.2.19 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-78 The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

[{'type': 'paragraph', 'content': 'CVE-2026-31996 is an input validation bypass vulnerability in OpenClaw versions prior to 2026.2.19, specifically in the tools.exec.safeBins component. This vulnerability allows attackers who already have command execution access to bypass intended stdin-only restrictions by exploiting certain command-line flags in the sort and grep commands.'}, {'type': 'list_item', 'content': "Attackers can use the sort command's output flags (-o or --output) to perform arbitrary file writes."}, {'type': 'list_item', 'content': "Attackers can use the grep command's recursive flag (-R) to perform recursive file reads."}, {'type': 'paragraph', 'content': 'The root cause is improper neutralization of special elements in OS commands (CWE-78) and an incomplete list of disallowed inputs (CWE-184), which allows malicious input to alter command behavior and circumvent protections.'}] [2, 3]

Impact Analysis

[{'type': 'paragraph', 'content': 'This vulnerability can impact you by allowing an attacker with existing command execution privileges to escalate their capabilities to perform unintended filesystem operations.'}, {'type': 'list_item', 'content': "Arbitrary file writes via the sort command's output flags, potentially modifying or creating files without authorization."}, {'type': 'list_item', 'content': "Recursive file reads via the grep command's recursive flag, potentially exposing sensitive files and data."}, {'type': 'paragraph', 'content': 'Such unauthorized filesystem access can lead to data integrity issues, information disclosure, and further compromise of the affected system.'}] [2, 3]

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

To mitigate this vulnerability, you should upgrade OpenClaw to version 2026.2.19 or later, where the issue has been fixed.

Avoid using or allowing the use of the vulnerable flags in the sort and grep commands within the tools.exec.safeBins functionality, specifically the sort -o (output) flag and the grep -R (recursive) flag, as these enable bypassing stdin-only restrictions.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-31996. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart