THREAT SENTINEL
Back to Dashboard
Hacking IncidentsCritical

CVE-2026-32973: Critical Severity Vulnerability Disclosed

Monday, March 30, 2026
Global
NVD

Summary

OpenClaw before 2026.3.11 contains an exec allowlist bypass vulnerability where matchesExecAllowlistPattern improperly normalizes patterns with lowercasing and glob matching that overmatches on POSIX paths. Attackers can exploit the ? wildcard matching across path segments to execute commands or pat

Threat Analysis

**Threat Overview:** OpenClaw before 2026.3.11 contains an exec allowlist bypass vulnerability where matchesExecAllowlistPattern improperly normalizes patterns with lowercasing and glob matching that overmatches on POSIX paths. Attackers can exploit the ? wildcard matching across path segments to execute commands or pat

**CVE ID:** CVE-2026-32973 **CVSS Score:** 9.8 (CRITICAL)

**Recommended Mitigations:** - Review and apply vendor security updates - Monitor for signs of exploitation - Implement network segmentation and access controls - Enable logging and monitoring for affected systems

Last updated: Mar 30, 2026, 08:22 AM

Daily Intelligence

Stay Ahead of Threats

Subscribe to receive daily threat briefings delivered to your inbox. Be the first to know about emerging security risks.

No spamUnsubscribe anytimeDaily at 9 AM