What is the CVSS score of CVE-2026-31992?

CVE-2026-31992 has a CVSS 3.1 base score of 7.1 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L. EPSS exploitation probability: 0.1%.

Which versions of Openclaw are affected by CVE-2026-31992?

OpenClaw versions prior to 2026.2.23 contain a vulnerability allowing authenticated operators to bypass security controls and execute arbitrary commands on systems.. A patch is available.

How to fix or mitigate CVE-2026-31992?

Within 24 hours: Inventory all OpenClaw deployments and document current versions in use. Within 7 days: Apply vendor patch 2026.2.23 or later to all affected systems, prioritizing production environments. Within 30 days: Conduct post-patch verification testing and review operator access logs for suspicious command execution activity during the vulnerability window.

Openclaw CVE-2026-31992

EUVD-2026-13023 HIGH

Incomplete List of Disallowed Inputs (CWE-184)

2026-03-19 VulnCheck

GHSA-48wf-g7cp-gr3m

Authentication Bypass Openclaw

7.1

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

Low

Lifecycle Timeline

EUVD ID Assigned

Mar 19, 2026 - 01:30 euvd

EUVD-2026-13023

Analysis Generated

Mar 19, 2026 - 01:30 vuln.today

Patch released

Mar 19, 2026 - 01:30 nvd

Patch available

CVE Published

Mar 19, 2026 - 01:00 nvd

HIGH 7.1

DescriptionNVD

OpenClaw versions prior to 2026.2.23 contain an allowlist bypass vulnerability in system.run guardrails that allows authenticated operators to execute unintended commands. When /usr/bin/env is allowlisted, attackers can use env -S to bypass policy analysis and execute shell wrapper payloads at runtime.

AnalysisAI

OpenClaw contains an allowlist bypass vulnerability in system.run guardrails that enables authenticated operators to execute arbitrary commands by exploiting the env -S flag when /usr/bin/env is allowlisted. The vulnerability affects all OpenClaw versions prior to 2026.2.23, allowing attackers with low-level privileges to bypass policy controls and execute shell wrapper payloads at runtime. …

RemediationAI

Within 24 hours: Inventory all OpenClaw deployments and document current versions in use. Within 7 days: Apply vendor patch 2026.2.23 or later to all affected systems, prioritizing production environments. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-31992 vulnerability details – vuln.today

Back