CVE-2026-26321

HIGH LAB

OpenClaw <2026.2.14 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-26321. PoCs published by exploitintel.

AI-analyzed exploit summary The repository contains functional exploit code demonstrating CVE-2026-26321, a path traversal and SSRF vulnerability in OpenClaw's Feishu extension. It includes three PoC scripts targeting local file read and SSRF vectors, along with detailed technical analysis and lab setup instructions.

Description

OpenClaw is a personal AI assistant. Prior to OpenClaw version 2026.2.14, the Feishu extension previously allowed `sendMediaFeishu` to treat attacker-controlled `mediaUrl` values as local filesystem paths and read them directly. If an attacker can influence tool calls (directly or via prompt injection), they may be able to exfiltrate local files by supplying paths such as `/etc/passwd` as `mediaUrl`. Upgrade to OpenClaw `2026.2.14` or newer to receive a fix. The fix removes direct local file reads from this path and routes media loading through hardened helpers that enforce local-root restrictions.

Exploits (1)

github WORKING POC 1 stars

by exploitintel · pythonpoc

https://github.com/exploitintel/eip-pocs-and-cves/tree/main/CVE-2026-26321

View Code ZIP pw:eip

The repository contains functional exploit code demonstrating CVE-2026-26321, a path traversal and SSRF vulnerability in OpenClaw's Feishu extension. It includes three PoC scripts targeting local file read and SSRF vectors, along with detailed technical analysis and lab setup instructions.

Classification

Working Poc 100%

Attack Type

Info Leak | Ssrf

Complexity

Moderate

Reliability

Reliable

Target: OpenClaw < 2026.2.14

No auth needed

Prerequisites: Docker with compose plugin · Python 3

MITRE ATT&CK

T1005 - Data from Local System T1552 - Unsecured Credentials T1190 - Exploit Public-Facing Application T1210 - Exploitation of Remote Services

devstral-2 · analyzed Mar 02, 2026 Full analysis →

References (3)

Core 3

Core References

Vendor Advisory x_refsource_confirm

https://github.com/openclaw/openclaw/security/advisories/GHSA-8jpq-5h99-ff5r

Patch x_refsource_misc

https://github.com/openclaw/openclaw/commit/5b4121d6011a48c71e747e3c18197f180b872c5d

View Patch ZIP pw:eip

Release Notes x_refsource_misc

https://github.com/openclaw/openclaw/releases/tag/v2026.2.14

Related Analysis

72-Hour Stress Test

Scores

CVSS v3 7.5

EPSS 0.0003

EPSS Percentile 8.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Lab Environment

EIP LAB

vulnerable docker pull ghcr.io/exploitintel/cve-2026-26321-vulnerable:latest

View in Library GitHub

Details

CWE

CWE-22

Status published

Products (2)

npm/openclaw 0 - 2026.2.14npm

openclaw/openclaw < 2026.2.14

Published Feb 19, 2026

Tracked Since Feb 20, 2026