OpenClaw (>= 2026.4.5, < 2026.4.10) — CraftedSignal Threat Feedhttps://feed.craftedsignal.io/products/openclaw--2026.4.5--2026.4.10/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioTue, 05 May 2026 12:16:17 +0000OpenClaw Sandbox Escape Vulnerability (CVE-2026-42434)https://feed.craftedsignal.io/briefs/2026-05-openclaw-sandbox-escape/Tue, 05 May 2026 12:16:17 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-05-openclaw-sandbox-escape/OpenClaw versions 2026.4.5 before 2026.4.10 contain a sandbox escape vulnerability (CVE-2026-42434) that allows attackers to bypass sandbox boundaries and route execution to remote nodes by overriding exec routing.OpenClaw versions 2026.4.5 before 2026.4.10 are vulnerable to a sandbox escape vulnerability, identified as CVE-2026-42434. This flaw allows attackers to bypass the intended sandbox boundaries. By exploiting this vulnerability, a sandboxed agent can override the exec routing mechanism, directing execution to unintended remote nodes instead of the intended sandbox paths. This could lead to unauthorized access and control over the OpenClaw environment. This vulnerability was reported on May 5th, 2026.

Attack Chain

  1. An attacker gains initial access to a sandboxed OpenClaw agent.
  2. The attacker crafts a malicious request to execute a command.
  3. The request includes a manipulated host parameter set to node, overriding the intended execution path.
  4. OpenClaw’s exec routing mechanism incorrectly processes the request due to the vulnerability in versions prior to 2026.4.10.
  5. Instead of executing within the sandbox, the command is routed to a remote node.
  6. The remote node executes the command with the privileges of the OpenClaw agent.
  7. The attacker gains unauthorized access and control over the remote node.

Impact

Successful exploitation of this vulnerability allows attackers to bypass sandbox restrictions within OpenClaw. This can lead to privilege escalation and unauthorized access to sensitive resources on remote nodes. The impact includes potential data breaches, system compromise, and the ability to execute arbitrary code outside the intended sandbox environment.

Recommendation

  • Upgrade OpenClaw to version 2026.4.10 or later to patch CVE-2026-42434.
  • Monitor OpenClaw agent logs for suspicious exec routing requests, especially those with host=node parameters.
  • Implement network segmentation to limit the impact of compromised nodes.
]]>highadvisorysandbox escapeprivilege escalationcve-2026-42434