CVE-2026-32918 PUBLISHED

OpenClaw < 2026.3.11 - Session Sandbox Escape via session_status Tool

Assigner: VulnCheck
Reserved: 16.03.2026 Published: 29.03.2026 Updated: 29.03.2026

OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status tool that allows sandboxed subagents to access parent or sibling session state. Attackers can supply arbitrary sessionKey values to read or modify session data outside their sandbox scope, including persisted model overrides.

Metrics

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N
CVSS Score: 9.2

Product Status

Vendor OpenClaw
Product OpenClaw
Versions Default: unaffected
  • affected from 0 to 2026.3.11 (excl.)
  • Version 2026.3.11 is unaffected

Credits

  • tdjackey reporter

References

Problem Types

  • Incorrect Authorization CWE