CVE-2026-32055

HIGH

OpenClaw < 2026.2.26 - Workspace Path Boundary Bypass via Non-existent Symlink

Title source: cna

Description

OpenClaw versions prior to 2026.2.26 contain a path traversal vulnerability in workspace boundary validation that allows attackers to write files outside the workspace through in-workspace symlinks pointing to non-existent out-of-root targets. The vulnerability exists because the boundary check improperly resolves aliases, permitting the first write operation to escape the workspace boundary and create files in arbitrary locations.

References (4)

Core 4

Core References

Third Party Advisory third-party-advisory

GitHub Security Advisory (GHSA-mgrq-9f93-wpp5)

https://github.com/openclaw/openclaw/security/advisories/GHSA-mgrq-9f93-wpp5

Patch patch

Patch Commit #1

https://github.com/openclaw/openclaw/commit/46eba86b45e9db05b7b792e914c4fe0de1b40a23

View Patch ZIP pw:eip

Patch patch

Patch Commit #2

https://github.com/openclaw/openclaw/commit/1aef45bc060b28a0af45a67dc66acd36aef763c9

View Patch ZIP pw:eip

Third Party Advisory third-party-advisory

VulnCheck Advisory: OpenClaw < 2026.2.26 - Workspace Path Boundary Bypass via Non-existent Symlink

https://www.vulncheck.com/advisories/openclaw-workspace-path-boundary-bypass-via-non-existent-symlink

Scores

CVSS v3 7.6

EPSS 0.0032

EPSS Percentile 23.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-22

Status published

Products (4)

npm/openclaw 0 - 2026.2.26npm

OpenClaw/OpenClaw < 2026.2.26

openclaw/openclaw < 2026.2.26

OpenClaw/OpenClaw 2026.2.26

Published Mar 21, 2026

Tracked Since Mar 21, 2026