📄 Description (English)
OpenClaw before 2026.3.22 contains an allowlist bypass vulnerability in system.run approvals that fails to unwrap /usr/bin/time wrappers. Attackers can bypass executable binding restrictions by using an unregistered time wrapper to reuse approval state for inner commands.
🤖 AI Executive Summary
OpenClaw before version 2026.3.22 contains a critical allowlist bypass vulnerability in system.run approvals that fails to properly unwrap /usr/bin/time wrappers, allowing attackers to circumvent executable binding restrictions. Attackers can exploit this by using unregistered time wrappers to reuse approval states for unauthorized inner commands, potentially leading to arbitrary code execution. This vulnerability affects Node.js environments and requires immediate patching to prevent privilege escalation and unauthorized command execution.
📄 Description (Arabic)
🤖 AI Intelligence Analysis Analyzed: Apr 23, 2026 07:39
🇸🇦 Saudi Arabia Impact Assessment
This vulnerability poses significant risk to Saudi organizations utilizing OpenClaw in Node.js environments, particularly: (1) Government agencies and NCA-regulated entities using OpenClaw for system automation and command execution controls; (2) Banking and financial institutions (SAMA-regulated) relying on OpenClaw for secure transaction processing and approval workflows; (3) Telecommunications providers (STC, Mobily) using OpenClaw for network automation and service management; (4) Energy sector organizations (ARAMCO, SEC) employing OpenClaw for critical infrastructure automation. The allowlist bypass could enable privilege escalation and unauthorized access to sensitive systems, compromising confidentiality, integrity, and availability of critical services.
🏢 Affected Saudi Sectors
Government and Public Administration
Banking and Financial Services
Telecommunications
Energy and Utilities
Healthcare
Critical Infrastructure
🎯 MITRE ATT&CK Techniques
T1548 - Abuse Elevation Control Mechanism (privilege escalation via allowlist bypass)
T1036 - Masquerading (using /usr/bin/time wrapper to mask malicious commands)
T1027 - Obfuscation of Files or Information (wrapper-based command obfuscation)
T1059 - Command and Scripting Interpreter (arbitrary command execution)
T1078 - Valid Accounts (reusing approval state for unauthorized access)
T1134 - Access Token Manipulation (approval state reuse)
⚖️ Saudi Risk Score (AI)
8.2
/ 10.0
🔧 Remediation Steps (English)
IMMEDIATE ACTIONS:
1. Identify all OpenClaw installations in your environment: grep -r 'openclaw' /opt /srv /home --include='package.json' && npm list openclaw
2. Check current version: npm list openclaw | grep openclaw
3. Isolate affected systems from production networks if version < 2026.3.22
PATCHING GUIDANCE:
1. Update OpenClaw to version 2026.3.22 or later: npm update openclaw@latest
2. For production systems, test patch in staging environment first
3. Restart all Node.js applications using OpenClaw after patching
4. Verify patch installation: npm list openclaw
COMPENSATING CONTROLS (if immediate patching not possible):
1. Implement strict file system permissions on /usr/bin/time: chmod 755 /usr/bin/time
2. Disable system.run approval functionality if not critical
3. Implement application-level command whitelisting beyond OpenClaw's allowlist
4. Monitor and log all system.run execution attempts
5. Restrict Node.js process privileges using AppArmor/SELinux profiles
DETECTION RULES:
1. Monitor for /usr/bin/time wrapper usage in system.run calls: auditctl -w /usr/bin/time -p x -k openclaw_time_wrapper
2. Alert on approval state reuse for different commands: grep -i 'approval.*reuse\|time.*wrapper' /var/log/openclaw.log
3. Monitor for unexpected child processes spawned via time wrapper: ps aux | grep -E 'time.*-f|time.*--' | grep -v grep
4. Enable Node.js audit logging: NODE_OPTIONS='--trace-warnings' npm start
🔧 خطوات المعالجة (العربية)
الإجراءات الفورية:
1. تحديد جميع تثبيتات OpenClaw في بيئتك: grep -r 'openclaw' /opt /srv /home --include='package.json' && npm list openclaw
2. التحقق من الإصدار الحالي: npm list openclaw | grep openclaw
3. عزل الأنظمة المتأثرة عن شبكات الإنتاج إذا كان الإصدار < 2026.3.22
إرشادات التصحيح:
1. تحديث OpenClaw إلى الإصدار 2026.3.22 أو أحدث: npm update openclaw@latest
2. بالنسبة لأنظمة الإنتاج، اختبر التصحيح في بيئة التجريب أولاً
3. أعد تشغيل جميع تطبيقات Node.js التي تستخدم OpenClaw بعد التصحيح
4. تحقق من تثبيت التصحيح: npm list openclaw
الضوابط البديلة (إذا لم يكن التصحيح الفوري ممكناً):
1. تطبيق أذونات نظام الملفات الصارمة على /usr/bin/time: chmod 755 /usr/bin/time
2. تعطيل وظيفة موافقة system.run إذا لم تكن حرجة
3. تطبيق قائمة بيضاء للأوامر على مستوى التطبيق بما يتجاوز قائمة OpenClaw
4. مراقبة وتسجيل جميع محاولات تنفيذ system.run
5. تقييد امتيازات عملية Node.js باستخدام ملفات تعريف AppArmor/SELinux
قواعد الكشف:
1. مراقبة استخدام مجلد /usr/bin/time في استدعاءات system.run: auditctl -w /usr/bin/time -p x -k openclaw_time_wrapper
2. تنبيه عند إعادة استخدام حالة الموافقة للأوامر المختلفة: grep -i 'approval.*reuse\|time.*wrapper' /var/log/openclaw.log
3. مراقبة العمليات الفرعية غير المتوقعة التي يتم إطلاقها عبر مجلد الوقت: ps aux | grep -E 'time.*-f|time.*--' | grep -v grep
4. تفعيل تسجيل تدقيق Node.js: NODE_OPTIONS='--trace-warnings' npm start
📋 Regulatory Compliance Mapping
🟢 NCA ECC 2024
ECC 2024 A.5.1.1 - Access Control Policies (allowlist bypass violates access control)
ECC 2024 A.6.1.1 - User Registration and Access Rights Management
ECC 2024 A.12.4.1 - Event Logging (detection and monitoring of exploitation)
ECC 2024 A.14.2.1 - System Change Management (patch management requirements)
🔵 SAMA CSF
SAMA CSF ID.AM-2 - Asset Management (inventory of OpenClaw instances)
SAMA CSF PR.AC-1 - Access Control (allowlist enforcement)
SAMA CSF PR.AC-4 - Access Rights (privilege escalation prevention)
SAMA CSF DE.CM-1 - Detection and Analysis (monitoring for exploitation)
SAMA CSF RS.RP-1 - Response Planning (incident response procedures)
🟡 ISO 27001:2022
ISO 27001:2022 A.5.15 - Access Control (enforcement of approved commands)
ISO 27001:2022 A.8.1 - User Endpoint Devices (Node.js application security)
ISO 27001:2022 A.8.2 - Privileged Access Rights (privilege escalation prevention)
ISO 27001:2022 A.12.4.1 - Event Logging and Monitoring
ISO 27001:2022 A.14.2 - System Change Management
🟣 PCI DSS v4.0.1
PCI DSS 2.2.4 - Configure system security parameters (allowlist configuration)
PCI DSS 6.2 - Ensure security patches are installed (patch management)
PCI DSS 10.2 - Implement automated audit trails (logging and monitoring)
🔗 References & Sources 4
🔗
https://github.com/openclaw/openclaw/commit/39409b6a6dd4239deea682e626bac9ba547bfb14
disclosure@vulncheck.com
Patch
🔗
https://github.com/openclaw/openclaw/commit/630f1479c44f78484dfa21bb407cbe6f171dac87
disclosure@vulncheck.com
Patch
🔗
https://github.com/openclaw/openclaw/security/advisories/GHSA-qm9x-v7cx-7rq4
disclosure@vulncheck.com
Vendor Advisory
🔗
https://www.vulncheck.com/advisories/openclaw-allowlist-bypass-via-unregistered-time-di...
disclosure@vulncheck.com
Third Party Advisory
📦 Affected Products / CPE 1 entries
openclaw:openclaw