OpenClaw Sandbox Boundary Bypass Vulnerability (CVE-2026-32915)
OpenClaw before 2026.3.11 contains a sandbox boundary bypass vulnerability that allows low-privilege leaf subagents to access the subagents control surface and execute commands with broader tool policies due to insufficient authorization checks, potentially leading to privilege escalation and unauthorized control of sibling processes.
CVE-2026-32915 describes a critical sandbox escape vulnerability affecting OpenClaw versions prior to 2026.3.11. The flaw resides in the insufficient authorization checks implemented on subagent control requests. A low-privilege sandboxed leaf worker can exploit this to bypass the intended sandbox boundaries and access the subagents control surface. This allows the attacker to resolve requests against the parent requester scope, instead of being limited to their own session tree. This…
Detection coverage 2
Detect Suspicious Subagent Control Request
highDetects subagent control requests that attempt to access resources outside their intended sandbox, indicating a potential sandbox escape attempt.
Detect Subagent Terminating Sibling Runs
mediumDetects subagents attempting to terminate sibling runs, which could be a sign of exploitation of CVE-2026-32915.
Detection queries are kept inside the platform. Get full rules →