Cyber Resilience

CVE-2026-32032

HighPublic PoCLPE

Published: 19 March 2026

Published
19 March 2026
Modified
25 March 2026
KEV Added
Patch
CVSS Score v4 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0002 6.0th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-32032 is a high-severity Untrusted Search Path (CWE-426) vulnerability in Openclaw Openclaw. Its CVSS base score is 7.3 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 6.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2026-32032 is an arbitrary shell execution vulnerability in OpenClaw versions prior to 2026.2.22. The flaw occurs in the shell environment fallback mechanism, which trusts the unvalidated SHELL path variable from the host environment without proper validation, corresponding to CWE-426 (Untrusted Search Path). Published on 2026-03-19, it carries a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H), indicating high impact on confidentiality, integrity, and availability.

An attacker with local access to the environment and low privileges (PR:L) can exploit the vulnerability with low complexity and no user interaction required. By injecting a malicious SHELL environment variable, the attacker can execute arbitrary commands with the privileges of the running OpenClaw process, potentially leading to full compromise of the affected system.

Mitigation is provided in OpenClaw version 2026.2.22 and later, via a fix in GitHub commit 25e89cc86338ef475d26be043aa541dfdb95e52a. Further details on the vulnerability and remediation are available in the GitHub security advisory at https://github.com/openclaw/openclaw/security/advisories/GHSA-f8mp-vj46-cq8v and the VulnCheck advisory at https://www.vulncheck.com/advisories/openclaw-arbitrary-shell-execution-via-unvalidated-shell-environment-variable. Practitioners should upgrade immediately and sanitize environment variables in deployments.

EU & UK References

Vulnerability details

OpenClaw versions prior to 2026.2.22 contain an arbitrary shell execution vulnerability in shell environment fallback that trusts the unvalidated SHELL path from the host environment. An attacker with local environment access can inject a malicious SHELL variable to execute arbitrary…

more

commands with the privileges of the OpenClaw process.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
T1059.004 Unix Shell Execution
Adversaries may abuse Unix shell commands and scripts for execution.
Why these techniques?

Local arbitrary command execution via malicious SHELL env var (untrusted search path) directly enables Unix shell interpreter abuse and privilege escalation from low-priv local access.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-32009Same product: Openclaw Openclaw
CVE-2026-32023Same product: Openclaw Openclaw
CVE-2026-32015Same product: Openclaw Openclaw
CVE-2026-35666Same product: Openclaw Openclaw
CVE-2026-32063Same product: Openclaw Openclaw
CVE-2026-41299Same product: Openclaw Openclaw
CVE-2026-42432Same product: Openclaw Openclaw
CVE-2026-35638Same product: Openclaw Openclaw
CVE-2026-42429Same product: Openclaw Openclaw
CVE-2026-41404Same product: Openclaw Openclaw

Affected Assets

openclaw
openclaw
≤ 2026.2.22

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates the vulnerability by requiring timely remediation through upgrade to OpenClaw version 2026.2.22 or later.

prevent

Prevents arbitrary shell execution by enforcing validation of untrusted environment variables like the SHELL path.

prevent

Supports mitigation by establishing secure configuration settings that sanitize or restrict propagation of untrusted environment variables to the OpenClaw process.

References