CVE-2026-26972
MEDIUM6.7EPSS 0.01%OpenClaw has a Path Traversal in Browser Download Functionality
描述
### Summary OpenClaw browser download helpers accepted an unsanitized output path. When invoked via the browser control gateway routes, this allowed path traversal to write downloads outside the intended OpenClaw temp downloads directory. This issue is not exposed via the AI agent tool schema (no `download` action). Exploitation requires authenticated CLI access or an authenticated gateway RPC token. ### Affected Packages / Versions - Package: `openclaw` (npm) - Affected: >=2026.1.12, <=2026.2.12 - Fixed: >=2026.2.13 ### Details Affected code: `src/browser/pw-tools-core.downloads.ts` (`waitForDownloadViaPlaywright`, `downloadViaPlaywright`). Fixed entrypoints (as of 2026.2.13): - Gateway browser control routes `/wait/download` and `/download` now restrict `path` to `DEFAULT_DOWNLOAD_DIR` via `resolvePathWithinRoot`. ### Fix Commit(s) - 7f0489e4731c8d965d78d6eac4a60312e46a9426 ### Mitigation Upgrade to `openclaw` >=2026.2.13. Thanks @locus-x64 for reporting.
受影響套件(1)
- npm/openclaw>= 2026.1.12, < 2026.2.13
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.7 | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
參考連結(5)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2026-26972
- PATCHhttps://github.com/openclaw/openclaw
- WEBhttps://github.com/openclaw/openclaw/commit/7f0489e4731c8d965d78d6eac4a60312e46a9426
- WEBhttps://github.com/openclaw/openclaw/releases/tag/v2026.2.13
- WEBhttps://github.com/openclaw/openclaw/security/advisories/GHSA-xwjm-j929-xq7c