OpenClaw Command Injection Vulnerability in Docker Sandbox Execution
Vulnerability
A command injection vulnerability has been identified in OpenClaw (formerly Clawdbot) versions prior to 2026.1.29. The issue arises from unsafe handling of the PATH environment variable, which allows authenticated users to control environment variables and influence command execution within the Docker sandbox. This vulnerability could lead to the execution of unintended commands, access to the container filesystem and environment variables, exposure of sensitive data, and increased risk in misconfigured or privileged container environments.
Impact
Exploitation of this vulnerability could result in unauthorized command execution within the Docker container, access to the container's filesystem and environment variables, exposure of sensitive data, and heightened risks in environments with misconfigured or privileged containers.
Reproduction
To reproduce this vulnerability, an authenticated user must supply a custom PATH environment variable while Docker sandbox mode is enabled. The injected PATH can then be used to execute unintended commands within the container, taking advantage of the PATH injection to manipulate the command execution environment.
Remediation
Users can upgrade to OpenClaw version 2026.1.29 or later to address this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.