CVE 8.7 HIGH

OpenClaw 2026.4.5 < 2026.4.10 - Sandbox Escape via host Parameter Override in Exec Routing_CVE-2026-42434

May 5, 2026 invoker category_cve

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

OpenClaw versions 2026.4.5 before 2026.4.10 contain a sandbox escape vulnerability allowing sandboxed agents to override exec routing by specifying host=node. Attackers can bypass sandbox boundaries and route execution to remote nodes instead of intended sandbox paths.

AI Analysis

Sandbox escape vulnerability in OpenClaw versions 2026.4.5 before 2026.4.10, allowing attackers to bypass sandbox boundaries and execute code remotely.

Basic Information

ID CVE-2026-42434

Source VulnCheck

Published May 5, 2026 at 11:24

Modified May 5, 2026 at 12:24

Affected Product

Vendor OpenClaw

Product OpenClaw

Version 2026.4.5

Affected Versions OpenClaw OpenClaw 2026.4.5

CWE Classification

CWE-863

AI Assessment

AI Score 8.7 / 10

AI Severity High

Vendor OpenClaw

Product OpenClaw

Version 2026.4.5

References

{
    "lastseen": "",
    "description": "OpenClaw versions 2026.4.5 before 2026.4.10 contain a sandbox escape vulnerability allowing sandboxed agents to override exec routing by specifying host=node. Attackers can bypass sandbox boundaries and route execution to remote nodes instead of intended sandbox paths.",
    "published": "2026-05-05T11:24:53.898Z",
    "modified": "2026-05-05T12:24:59.341Z",
    "type": "cve",
    "title": "OpenClaw 2026.4.5 < 2026.4.10 - Sandbox Escape via host Parameter Override in Exec Routing",
    "source": "VulnCheck",
    "references": "https://github.com/openclaw/openclaw/security/advisories/GHSA-736r-jwj6-4w23\nhttps://github.com/openclaw/openclaw/commit/dffad08529202edbf34e4808788e1182fe10f6a9\nhttps://www.vulncheck.com/advisories/openclaw-sandbox-escape-via-host-parameter-override-in-exec-routing",
    "id": "CVE-2026-42434",
    "bulletinFamily": "",
    "cwe": [
        "CWE-863"
    ],
    "cvelist": null,
    "sourceData": "OpenClaw OpenClaw 2026.4.5",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "OpenClaw",
    "version": "2026.4.5",
    "vendor": "OpenClaw",
    "ai_description": "Sandbox escape vulnerability in OpenClaw versions 2026.4.5 before 2026.4.10, allowing attackers to bypass sandbox boundaries and execute code remotely.",
    "ai_severity": "High",
    "ai_vendor": "OpenClaw",
    "ai_product": "OpenClaw",
    "ai_version": "2026.4.5",
    "ai_score": 8.7
}

💭 Join the Security Discussion ❌ Cancel Reply