CVE-2026-32918
`OpenClaw: session_status` let sandboxed subagents access parent or sibling session state
Description
### Summary The built-in `session_status` tool did not enforce the intended session-visibility boundary. A sandboxed subagent could supply another session's `sessionKey` and inspect or modify state outside its own sandbox scope. ### Impact This allowed a sandboxed child session to read parent or sibling session data and, in affected releases, update the target session's persisted model override. ### Affected versions `openclaw` `<= 2026.3.8` ### Patch Fixed in `openclaw` `2026.3.11` and included in later releases such as `2026.3.12`. Session visibility checks now enforce the sandbox boundary before reading or mutating session state.
How to fix CVE-2026-32918
To remediate CVE-2026-32918, upgrade the affected package to a fixed version below.
- —upgrade to 2026.3.11 or later
Is CVE-2026-32918 being exploited?
Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 2026.3.11
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.4 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N |