GHSA-4685-c5cp-vp95

Suggest an improvement
Source
https://github.com/advisories/GHSA-4685-c5cp-vp95
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-4685-c5cp-vp95/GHSA-4685-c5cp-vp95.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-4685-c5cp-vp95
Downstream
Published
2026-02-19T22:06:00Z
Modified
2026-02-19T22:23:23.521831Z
Severity
  • 3.6 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N CVSS Calculator
Summary
OpenClaw safeBins stdin-only bypass via sort output and recursive grep flags
Details

Summary

tools.exec.safeBins could be bypassed for filesystem access when sort output flags (-o / --output) or recursive grep flags were allowed through safe-bin execution paths.

Affected Packages / Versions

  • Package: openclaw (npm)
  • Affected versions: <= 2026.2.17
  • Patched versions: >= 2026.2.19
  • Latest published version at triage time: 2026.2.17

Impact

In deployments that enabled tools.exec.safeBins, an attacker with access to command execution flows could turn intended stdin-only safe-bin usage into file writes (sort -o) or recursive file reads (grep -R).

Fix Commit(s)

  • cfe8457a0f4aae5324daec261d3b0aad1461a4bc

Thanks @nedlir for reporting.

Database specific 
{
    "nvd_published_at": null,
    "github_reviewed_at": "2026-02-19T22:06:00Z",
    "github_reviewed": true,
    "severity": "LOW",
    "cwe_ids": [
        "CWE-184",
        "CWE-78"
    ]
}
References

Affected packages

npm / openclaw

Package

Name
openclaw
View open source insights on deps.dev
Purl
pkg:npm/openclaw

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2026.2.19

Database specific

last_known_affected_version_range 
"<= 2026.2.17"
source 
"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-4685-c5cp-vp95/GHSA-4685-c5cp-vp95.json"