Primary

Context

OpenClaw Approval Bypass Vulnerability in Script Runners

Vulnerability

A vulnerability in OpenClaw versions prior to 2026.3.11 allows for an approval bypass in the node-host 'system.run' command. The issue arises because certain script runners, such as 'tsx' and 'jiti', do not properly bind mutable file operands. This flaw enables attackers to gain approval for harmless script commands, modify the corresponding scripts on disk, and execute the altered code within the approved context.

Impact

Exploitation of this vulnerability could lead to unauthorized execution of modified local scripts under the OpenClaw runtime user, potentially causing unintended consequences depending on the nature of the executed code.

Remediation

Users are advised to upgrade to OpenClaw version 2026.3.11 or later.

Added: Mar 29, 2026, 1:23 PM

Updated: Mar 29, 2026, 1:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.4

remediation

0.0

relevance

4.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

2.4

remediation

0.0

relevance

4.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenClaw Approval Bypass Vulnerability in Script Runners

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating