LOW 3.6 npm
OpenClaw safeBins stdin-only bypass via sort output and recursive grep flags
GHSA-4685-c5cp-vp95 · CVE-2026-31996
Published · Modified
Description
Summary
tools.exec.safeBins could be bypassed for filesystem access when sort output flags (-o / --output) or recursive grep flags were allowed through safe-bin execution paths.
Affected Packages / Versions
- Package:
openclaw(npm) - Affected versions:
<= 2026.2.17 - Patched versions:
>= 2026.2.19 - Latest published version at triage time:
2026.2.17
Impact
In deployments that enabled tools.exec.safeBins, an attacker with access to command execution flows could turn intended stdin-only safe-bin usage into file writes (sort -o) or recursive file reads (grep -R).
Fix Commit(s)
2c05cbb43e48ebad03626d3125746fb1b9a8520f
Found using MCPwner
Thanks @nedlir for reporting.
References
- WEB https://github.com/openclaw/openclaw/security/advisories/GHSA-4685-c5cp-vp95
- ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2026-31996
- WEB https://github.com/openclaw/openclaw/commit/2c05cbb43e48ebad03626d3125746fb1b9a8520f
- PACKAGE https://github.com/openclaw/openclaw
- WEB https://www.vulncheck.com/advisories/openclaw-safebins-stdin-only-bypass-via-sort-output-and-recursive-grep-flags
Ready to move
Start Securing
Free, no credit card | First findings in minutes