What is CVE-2026-53806?

CVE-2026-53806 is a high-severity vulnerability, classified under Time-of-check Time-of-use (TOCTOU) Race Condition. CVSS score: 8.8/10. Published 2026-06-11.

How severe is CVE-2026-53806?

High severity. CVSS v3 base score is 8.8 out of 10.

CVE-2026-53806

CVE-2026-53806

OpenClaw before 2026.5.12 contains a shell option parsing vulnerability that allows combined POSIX shell flags to bypass exec revalidation checks. Attackers can exploit this by using combined shell options to execute inline shell content w…

Vulnerability class: TOCTOU (Time-of-Check to Time-of-Use)

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Weakness classification (CWE)

CWE-367 — Time-of-check Time-of-use (TOCTOU) Race Condition

References

disclosure@vulncheck.com
disclosure@vulncheck.com

Frequently asked questions

What is CVE-2026-53806?: CVE-2026-53806 is a high-severity vulnerability, classified under Time-of-check Time-of-use (TOCTOU) Race Condition. CVSS score: 8.8/10. Published 2026-06-11.
How severe is CVE-2026-53806?: High severity. CVSS v3 base score is 8.8 out of 10.