What is the CVSS score of CVE-2026-22175?

CVE-2026-22175 has a CVSS 3.1 base score of 7.1 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N. EPSS exploitation probability: 0.1%.

Which versions of Openclaw are affected by CVE-2026-22175?

OpenClaw versions prior to 2026.2.23 contain a critical authorization bypass vulnerability that allows attackers to execute arbitrary commands despite approved allowlist restrictions.. A patch is available.

Openclaw CVE-2026-22175

EUVD-2026-12718 HIGH

Incomplete List of Disallowed Inputs (CWE-184)

2026-03-18 VulnCheck

GHSA-gwqp-86q6-w47g

Authentication Bypass Openclaw

7.1

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

Low

Availability

None

Lifecycle Timeline

EUVD ID Assigned

Mar 18, 2026 - 02:30 euvd

EUVD-2026-12718

Analysis Generated

Mar 18, 2026 - 02:30 vuln.today

Patch released

Mar 18, 2026 - 02:30 nvd

Patch available

CVE Published

Mar 18, 2026 - 01:34 nvd

HIGH 7.1

DescriptionNVD

OpenClaw versions prior to 2026.2.23 contain an exec approval bypass vulnerability in allowlist mode where allow-always grants could be circumvented through unrecognized multiplexer shell wrappers like busybox and toybox sh -c commands. Attackers can exploit this by invoking arbitrary payloads under the same multiplexer wrapper to satisfy stored allowlist rules, bypassing intended execution restrictions.

AnalysisAI

OpenClaw contains an execution approval bypass vulnerability in allowlist mode that allows authenticated attackers to circumvent allow-always grants through unrecognized multiplexer shell wrappers like busybox and toybox. Attackers with low-level privileges can invoke arbitrary payloads under these multiplexer wrappers to satisfy stored allowlist rules while executing unintended commands. …

RemediationAI

Within 24 hours: Inventory all systems running OpenClaw and identify instances in allowlist mode; disable allowlist mode if operationally feasible pending patching. Within 7 days: Apply vendor patch to upgrade OpenClaw to version 2026.2.23 or later across all affected systems. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-22175 vulnerability details – vuln.today

Back