Threats Tagged 'ghsa-vxx3-6hc9-7cc3'
View all threats tagged with 'ghsa-vxx3-6hc9-7cc3'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'ghsa-vxx3-6hc9-7cc3'
Click on any threat for detailed analysis and mitigation recommendations
GHSA-vxx3-6hc9-7cc3: OpenClaw: Combined POSIX shell options could confuse exec revalidationCVE-2026-53806 0 OpenClaw versions prior to 2026.5.12 contain a vulnerability where combined POSIX shell options can cause inconsistent parsing between approval-time and execution-time, potentially bypassing allowlist decisions. This issue affects the feature when enabled and reachable, allowing inline shell commands to run without intended restrictions. The vulnerability does not alter the trusted-operator model but depends on operator configuration and input trust boundaries. The first stable patched version is 2026.5.12. Until patched, it is recommended to avoid combined shell option forms in allowlisted commands and apply general hardening by narrowing allowlists and disabling the feature if not needed. Join the discussion | GCVE Database | 07/02/2026, 17:11:43 UTC Added: 07/02/2026, 22:57:10 UTC |
Showing 1 to 1 of 1 result