A vulnerability, which was classified as critical , has been found in OpenClaw up to 2026.2.21 . Impacted is an unknown function. The manipulation leads to os command injection. This vulnerability is listed as CVE-2026-29607 . The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.