Security Advisory

CVE-2026-32920

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-31 11:17:14
Last updated 2026-06-23 16:15:19
Assigner VulnCheck
State PUBLISHED

Description

OpenClaw before 2026.3.12 automatically discovers and loads plugins from .OpenClaw/extensions/ without explicit trust verification, allowing arbitrary code execution. Attackers can execute malicious code by including crafted workspace plugins in cloned repositories that execute when users run OpenClaw from the directory.