CVE-2026-53848
Received Received - Intake
OpenClaw Exec Allowlist Bypass via Wrapper Manipulation

Publication date: 2026-06-16

Last updated on: 2026-06-16

Assigner: VulnCheck

Description
OpenClaw before 2026.5.26 contains an exec allowlist bypass vulnerability allowing authenticated operators to execute wrapper-level side effects outside allowlisted command intent. Attackers can craft command requests that bypass allowlist validation by leveraging transparent command wrappers to perform unintended operations.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-16
Last Modified
2026-06-16
Generated
2026-06-16
AI Q&A
2026-06-16
EPSS Evaluated
N/A
NVD
CVE-2026-53848
EUVD
EUVD-2026-37150
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openclaw openclaw to 2026.5.26 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-184 The product implements a protection mechanism that relies on a list of inputs (or properties of inputs) that are not allowed by policy or otherwise require other action to neutralize before additional processing takes place, but the list is incomplete.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-53848 is a vulnerability in OpenClaw versions before 2026.5.26 where the exec allowlist can be bypassed by authenticated operators. This happens because transparent command wrappers execute side effects outside the intended allowlisted command scope. Attackers can craft command requests that bypass the allowlist validation, causing unintended operations to be executed beyond the allowed commands.

The issue is related to the exec allowlist feature not fully accounting for side effects caused by wrapper commands, allowing these wrappers to perform actions outside the intended command intent.

Impact Analysis

This vulnerability can allow authenticated operators to execute unintended operations outside the scope of allowed commands, potentially leading to unauthorized side effects on the system.

The actual impact depends on the operator's configuration and whether lower-trust inputs can reach the affected exec allowlist path. If exploited, it could lead to unexpected command execution, which might affect system behavior or security.

Mitigations include reviewing wrapper commands carefully, requiring approval for shell-like wrappers, keeping allowlists narrow, avoiding shared Gateways between untrusted users, and disabling the affected feature if not needed.

Mitigation Strategies

To mitigate the CVE-2026-53848 vulnerability in OpenClaw, you should:

  • Review wrapper commands carefully to ensure they do not allow unintended side effects.
  • Require approval for any shell-like wrappers to prevent unauthorized command execution.
  • Keep channel and tool allowlists as narrow as possible to limit exposure.
  • Avoid sharing Gateways between untrusted users to reduce risk of exploitation.
  • Disable the affected exec allowlist feature if it is not necessary in your environment.

Additionally, upgrading to OpenClaw version 2026.5.26 or later, where this vulnerability is patched, is recommended.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53848. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart