CVE-2026-26321

HIGH LAB

OpenClaw <2026.2.14 - Path Traversal

Title source: llm

Description

OpenClaw is a personal AI assistant. Prior to OpenClaw version 2026.2.14, the Feishu extension previously allowed `sendMediaFeishu` to treat attacker-controlled `mediaUrl` values as local filesystem paths and read them directly. If an attacker can influence tool calls (directly or via prompt injection), they may be able to exfiltrate local files by supplying paths such as `/etc/passwd` as `mediaUrl`. Upgrade to OpenClaw `2026.2.14` or newer to receive a fix. The fix removes direct local file reads from this path and routes media loading through hardened helpers that enforce local-root restrictions.

Exploits (1)

github WORKING POC 1 stars

by exploitintel · pythonpoc

https://github.com/exploitintel/eip-pocs-and-cves/tree/main/CVE-2026-26321

View Code ZIP pw:eip

References (3)

[Patch] https://github.com/openclaw/openclaw/commit/5b4121d6011a48c71e747e3c18197f180b872c5d

View Patch ZIP pw:eip

[Vendor Advisory] https://github.com/openclaw/openclaw/security/advisories/GHSA-8jpq-5h99-ff5r

[Release Notes] https://github.com/openclaw/openclaw/releases/tag/v2026.2.14

Related Analysis

72-Hour Stress Test

Scores

CVSS v3 7.5

EPSS 0.0003

EPSS Percentile 7.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Lab Environment

EIP LAB

Lab screenshot

vulnerable docker pull ghcr.io/exploitintel/cve-2026-26321-vulnerable:latest

View in Library GitHub

Details

CWE

CWE-22

Status published

Products (2)

npm/openclaw 0 - 2026.2.14npm

openclaw/openclaw < 2026.2.14

Published Feb 19, 2026

Tracked Since Feb 20, 2026