CVE-2026-32022
Stdin Policy Bypass in OpenClaw grep Allows Arbitrary File Read
Publication date: 2026-03-19
Last updated on: 2026-03-25
Assigner: VulnCheck
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| openclaw | openclaw | to 2026.2.21 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-184 | The product implements a protection mechanism that relies on a list of inputs (or properties of inputs) that are not allowed by policy or otherwise require other action to neutralize before additional processing takes place, but the list is incomplete. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in OpenClaw versions prior to 2026.2.21 and involves a stdin-only policy bypass in the grep tool within tools.exec.safeBins.
Attackers can exploit this by supplying a pattern via the -e flag parameter and including a positional filename operand, which allows them to bypass file access restrictions.
As a result, attackers can read arbitrary and sensitive files, such as the .env file from the working directory.
How can this vulnerability impact me? :
This vulnerability can lead to unauthorized disclosure of sensitive information by allowing attackers to read arbitrary files that should be protected.
Since attackers can access files like .env, which often contain environment variables and secrets, this could compromise application security and confidentiality.
The CVSS v3.1 score of 5.3 indicates a moderate severity, with high confidentiality impact but no impact on integrity or availability.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know