Home
» GitHub Advisories
» GHSA-7977-c43c-xpwj
Description
In OpenClaw before 2026.2.23, tools.exec.safeBins validation for sort could be bypassed via GNU long-option abbreviations (such as --compress-prog) in allowlist mode, leading to approval-free execution paths that were intended to require approval. Only an exact string such as --compress-program was denied.
Basic information
Type
reviewed
Severity
critical Advisory on GitHub
Open advisory ↗ Repository advisory
—
Source code
Browse source ↗ Published (advisory)
2026-02-27 06:31:28 UTC
Updated
2026-02-28 02:17:26 UTC
GitHub reviewed
2026-02-28 02:17:24 UTC
NVD published
2026-02-27 04:16:03 UTC
EPSS Score
Score
Percentile
0.04%
12.51%
CVSS Scores
Base score
Version
Severity
Vector
10.0
3.1
—
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Click to expand
Attack vector (AV:N)
Could be attacked over the internet or any normal routed network—not just someone sitting at the machine.
Attack complexity (AC:L)
Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:L)
A normal user session is enough; they don’t have to be admin.
User interaction (UI:N)
Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:C)
Breaking this can reach past the original component and bite other resources—bigger blast radius.
Confidentiality (C:H)
Serious risk that confidential data gets exposed in a big way.
Integrity (I:H)
They could widely tamper with or forge data—trust in the data is badly hurt.
Availability (A:H)
Could take the service down hard or make it unusable for people who depend on it.
CWEs
CWE id
Name
CWE-184
Incomplete List of Disallowed Inputs
Affected packages (1)
Vulnerable version ranges and first patched releases as published by GitHub.
Ecosystem
Package
Vulnerable range
First patched
Vulnerable functions
npm
openclaw < 2026.2.23
2026.2.23
—
cvelogic
Threat Intelligence