CVE-2026-25593 | THREATINT

Description

OpenClaw is a personal AI assistant. Prior to 2026.1.20, an unauthenticated local client could use the Gateway WebSocket API to write config via config.apply and set unsafe cliPath values that were later used for command discovery, enabling command injection as the gateway user. This vulnerability is fixed in 2026.1.20.

PUBLISHED Reserved 2026-02-03 | Published 2026-02-06 | Updated 2026-02-06 | Assigner GitHub_M

HIGH: 8.4CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CWE-306: Missing Authentication for Critical Function

Product status

< 2026.1.20

affected

References

github.com/...enclaw/security/advisories/GHSA-g55j-c2v4-pjcg

cve.org (CVE-2026-25593)

nvd.nist.gov (CVE-2026-25593)

Download JSON