CVE-2026-35651 | THREATINT

Description

OpenClaw versions 2026.2.13 through 2026.3.24 contain an ANSI escape sequence injection vulnerability in approval prompts that allows attackers to spoof terminal output. Untrusted tool metadata can carry ANSI control sequences into approval prompts and permission logs, enabling attackers to manipulate displayed information through malicious tool titles.

PUBLISHED Reserved 2026-04-04 | Published 2026-04-10 | Updated 2026-04-14 | Assigner VulnCheck

MEDIUM: 5.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

MEDIUM: 4.3CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Problem types

CWE-150: Improper Neutralization of Escape, Meta, or Control Sequences

Product status

Default status

unaffected

2026.2.13 (semver)

affected

2026.3.25 (semver)

unaffected

Credits

Nathan (@nexrin) reporter

KeenSecurityLab finder

References

github.com/...enclaw/security/advisories/GHSA-4hmj-39m8-jwc7 (GitHub Security Advisory (GHSA-4hmj-39m8-jwc7)) third-party-advisory

github.com/...ommit/464e2c10a5edceb380d815adb6ff56e1a4c50f60 (Patch Commit) patch

www.vulncheck.com/...e-sequence-injection-in-approval-prompt (VulnCheck Advisory: OpenClaw 2026.2.13 < 2026.3.25 - ANSI Escape Sequence Injection in Approval Prompt) third-party-advisory

cve.org (CVE-2026-35651)

nvd.nist.gov (CVE-2026-35651)

Download JSON