CVE-2026-24763

Published: Feb 2, 2026

Modified: Feb 4, 2026

PUBLISHED

CVSS v3.1

8.8

HIGH

Description

OpenClaw (formerly Clawdbot) is a personal AI assistant you run on your own devices. Prior to 2026.1.29, a command injection vulnerability existed in OpenClaw’s Docker sandbox execution mechanism due to unsafe handling of the PATH environment variable when constructing shell commands. An authenticated user able to control environment variables could influence command execution within the container context. This vulnerability is fixed in 2026.1.29.

Vendor	Product	Versions
clawdbot	clawdbot	affected `< 2026.1.29`

Weaknesses (CWE)

CWE-78

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

https://github.com/openclaw/openclaw/security/advisories/GHSA-mc68-q9jw-2h3v

x_refsource_CONFIRM

https://github.com/openclaw/openclaw/commit/771f23d36b95ec2204cc9a0054045f5d8439ea75

x_refsource_MISC

https://github.com/openclaw/openclaw/releases/tag/v2026.1.29

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-24763

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References