UNKNOWNCVE-2026-32973
OpenClaw < 2026.3.11 - Exec Allowlist Pattern Overmatch via POSIX Path Normalization
Platform
python
Component
openclaw
Fixed in
2026.3.11
OpenClaw before 2026.3.11 contains an exec allowlist bypass vulnerability where matchesExecAllowlistPattern improperly normalizes patterns with lowercasing and glob matching that overmatches on POSIX paths. Attackers can exploit the ? wildcard matching across path segments to execute commands or paths not intended by operators.
How to fix
Actualice la biblioteca OpenClaw a la versión 2026.3.11 o posterior. Esto corrige la vulnerabilidad de omisión de la lista de permitidos de ejecución debido a la normalización incorrecta de patrones con coincidencia de comodines en rutas POSIX.
Monitor your dependencies automatically
Get notified when new vulnerabilities affect your projects. Free forever.
Start free