CVE-2026-32016
Received Received - Intake
Path Validation Bypass in OpenClaw exec-approval Allows Unauthorized Execution

Publication date: 2026-03-19

Last updated on: 2026-03-25

Assigner: VulnCheck

Description
OpenClaw versions prior to 2026.2.22 on macOS contain a path validation bypass vulnerability in the exec-approval allowlist mode that allows local attackers to execute unauthorized binaries by exploiting basename-only allowlist entries. Attackers can execute same-name local binaries ./echo without approval when security=allowlist and ask=on-miss are configured, bypassing intended path-based policy restrictions.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-19
Last Modified
2026-03-25
Generated
2026-06-16
AI Q&A
2026-03-20
EPSS Evaluated
2026-06-14
NVD
CVE-2026-32016
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openclaw openclaw to 2026.2.22 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-426 The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in OpenClaw versions prior to 2026.2.22 on macOS. It is a path validation bypass in the exec-approval allowlist mode. Specifically, local attackers can exploit basename-only allowlist entries to execute unauthorized binaries. For example, an attacker can run a local binary named ./echo without approval when the security mode is set to allowlist and the ask setting is on-miss, thereby bypassing the intended path-based policy restrictions.

Impact Analysis

The vulnerability allows local attackers to execute unauthorized binaries on a system running vulnerable versions of OpenClaw. This means attackers can bypass security policies designed to restrict execution to approved binaries, potentially leading to unauthorized code execution with elevated privileges. The impact includes high confidentiality, integrity, and availability risks as indicated by the CVSS scores.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-32016. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart