Critical severityNVD Advisory· Published Mar 19, 2026· Updated Mar 23, 2026
OpenClaw 2026.2.26 < 2026.3.1 - Current Working Directory Injection via Windows Wrapper Resolution Fallback
CVE-2026-31999
Description
OpenClaw versions 2026.2.26 prior to 2026.3.1 on Windows contain a current working directory injection vulnerability in wrapper resolution for .cmd/.bat files that allows attackers to influence execution behavior through cwd manipulation. Remote attackers can exploit improper shell execution fallback mechanisms to achieve command execution integrity loss by controlling the current working directory during wrapper resolution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
openclawnpm | >= 2026.2.26, < 2026.3.1 | 2026.3.1 |
Affected products
2Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-6f6j-wx9w-ff4jghsaADVISORY
- github.com/openclaw/openclaw/security/advisories/GHSA-6f6j-wx9w-ff4jghsathird-party-advisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2026-31999ghsaADVISORY
- www.vulncheck.com/advisories/openclaw-current-working-directory-injection-via-windows-wrapper-resolution-fallbackghsathird-party-advisoryWEB
News mentions
0No linked articles in our index yet.