CVE-2026-32046

Summary

OpenClaw versions prior to 2026.2.21 contain an improper sandbox configuration vulnerability that allows attackers to execute arbitrary code by exploiting renderer-side vulnerabilities without requiring a sandbox escape. Attackers can leverage the disabled OS-level sandbox protections in the Chromium browser container to achieve code execution on the host system.

Affected Software

VendorProductVersion RangeStatus
OpenClawOpenClaw0 < 2026.2.21affected
OpenClawOpenClaw2026.2.21unaffected

Weaknesses

  • CWE-1188: CWE-1188

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References