CVE-2026-27487

Published: Feb 21, 2026Modified: Feb 23, 2026

8.0

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Exploitability: 2.1 / Impact: 5.9

Source: NVD

Description

OpenClaw is a personal AI assistant. In versions 2026.2.13 and below, when using macOS, the Claude CLI keychain credential refresh path constructed a shell command to write the updated JSON blob into Keychain via security add-generic-password -w .... Because OAuth tokens are user-controlled data, this created an OS command injection risk. This issue has been fixed in version 2026.2.14.

Affected (1)

Products: Openclaw: Openclaw

1 product

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Openclaw Openclaw	Before 2026.2.14

Running on/with	Platform Versions
Apple Macos	All versions

Related CWEs

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References (6)

https://github.com/openclaw/openclaw/commit/66d7178f2d6f9d60abad35797f97f3e61389b70c

Source: security-advisories@github.com

Patch

https://github.com/openclaw/openclaw/commit/9dce3d8bf83f13c067bc3c32291643d2f1f10a06

Source: security-advisories@github.com

Patch

https://github.com/openclaw/openclaw/commit/b908388245764fb3586859f44d1dff5372b19caf

Source: security-advisories@github.com

Patch

https://github.com/openclaw/openclaw/pull/15924

Source: security-advisories@github.com

Issue Tracking

https://github.com/openclaw/openclaw/releases/tag/v2026.2.14

Source: security-advisories@github.com

Release Notes

https://github.com/openclaw/openclaw/security/advisories/GHSA-4564-pvr2-qq4h

Source: security-advisories@github.com

PatchVendor Advisory

Timeline

No history available yet.