CVE-2026-32920

HIGH

OpenClaw < 2026.3.12 - Arbitrary Code Execution via Auto-Discovery of Workspace Plugins

Title source: cna

Description

OpenClaw before 2026.3.12 automatically discovers and loads plugins from .OpenClaw/extensions/ without explicit trust verification, allowing arbitrary code execution. Attackers can execute malicious code by including crafted workspace plugins in cloned repositories that execute when users run OpenClaw from the directory.

References (2)

[Third Party Advisory] https://github.com/openclaw/openclaw/security/advisories/GHSA-99qw-6mr3-36qr

[Third Party Advisory] https://www.vulncheck.com/advisories/openclaw-arbitrary-code-execution-via-auto-discovery-of-workspace-plugins

Scores

CVSS v3 8.4

EPSS 0.0001

EPSS Percentile 3.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-829

Status published

Products (4)

npm/openclaw 0 - 2026.3.12npm

OpenClaw/OpenClaw < 2026.3.12

openclaw/openclaw < 2026.3.12

OpenClaw/OpenClaw 2026.3.12

Published Mar 31, 2026

Tracked Since Mar 31, 2026