Critical severityNVD Advisory· Published Mar 19, 2026· Updated Mar 23, 2026
OpenClaw 2026.2.26 < 2026.3.1 - Current Working Directory Injection via Windows Wrapper Resolution Fallback
CVE-2026-31999
Description
OpenClaw versions 2026.2.26 prior to 2026.3.1 on Windows contain a current working directory injection vulnerability in wrapper resolution for .cmd/.bat files that allows attackers to influence execution behavior through cwd manipulation. Remote attackers can exploit improper shell execution fallback mechanisms to achieve command execution integrity loss by controlling the current working directory during wrapper resolution.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
openclawnpm | >= 2026.2.26, < 2026.3.1 | 2026.3.1 |
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/advisories/GHSA-6f6j-wx9w-ff4jghsaADVISORY
- github.com/openclaw/openclaw/security/advisories/GHSA-6f6j-wx9w-ff4jghsathird-party-advisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2026-31999ghsaADVISORY
- www.vulncheck.com/advisories/openclaw-current-working-directory-injection-via-windows-wrapper-resolution-fallbackghsathird-party-advisoryWEB
News mentions
0No linked articles in our index yet.