CVE-2026-41329

OpenClaw · OpenClaw

A sandbox bypass vulnerability in OpenClaw before 2026.3.31 allows attackers to escalate privileges by manipulating heartbeat context inheritance and the senderIsOwner parameter.

Executive summary

A critical sandbox bypass vulnerability in OpenClaw allows attackers to escalate privileges, potentially leading to full system compromise.

Vulnerability

This vulnerability involves improper context validation within the OpenClaw sandbox. By manipulating the heartbeat context inheritance and the senderIsOwner parameter, an attacker can bypass sandbox restrictions to achieve unauthorized privilege escalation.

Business impact

The severity of this vulnerability is underscored by its 9.9 CVSS score, indicating a nearly maximal risk to system security. Successful exploitation grants an attacker elevated privileges, which could result in complete host compromise, data theft, and the disruption of critical business services.

Remediation

Immediate Action: Upgrade all instances of OpenClaw to version 2026.3.31 or later immediately.

Proactive Monitoring: Review system logs for unusual heartbeat signals or repeated attempts to manipulate context parameters that may indicate exploitation efforts.

Compensating Controls: Ensure the application is running within a containerized environment with hardened kernel-level protections to limit the impact of a sandbox breakout.

Exploitation status

Public Exploit Available: Unknown

Analyst recommendation

Given the critical nature of this privilege escalation vulnerability, immediate patching is required. Administrators should verify that all deployments are updated to version 2026.3.31 to effectively close the sandbox bypass vector.