CVE-2026-31992 | OpenClaw up to 2026.2.22 Guardrails /usr/bin/env incomplete blacklist (GHSA-48wf-g7cp-gr3m)

A vulnerability identified as critical has been detected in OpenClaw up to 2026.2.22. Affected is an unknown function of the file /usr/bin/env of the component Guardrails. The manipulation leads to incomplete blacklist.

This vulnerability is uniquely identified as CVE-2026-31992. The attack is possible to be carried out remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More