← Volver a CVEs

CVE-2026-28482

HIGH

7.1

Descripcion

OpenClaw versions prior to 2026.2.12 construct transcript file paths using unsanitized sessionId parameters and sessionFile paths without enforcing directory containment. Authenticated attackers can exploit path traversal sequences like ../../etc/passwd in sessionId or sessionFile parameters to read or write arbitrary files outside the agent sessions directory.

Detalles CVE

Puntuacion CVSS v3.17.1

SeveridadHIGH

Vector CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Vector de ataqueLOCAL

ComplejidadLOW

Privilegios requeridosLOW

Interaccion usuarioNONE

Publicado3/5/2026

Ultima modificacion3/23/2026

Fuentenvd

Avistamientos honeypot0

Productos afectados

openclaw:openclaw

Debilidades (CWE)

CWE-22

Referencias

https://github.com/openclaw/openclaw/commit/4199f9889f0c307b77096a229b9e085b8d856c26(disclosure@vulncheck.com)

https://github.com/openclaw/openclaw/commit/cab0abf52ac91e12ea7a0cf04fff315cf0c94d64(disclosure@vulncheck.com)

https://github.com/openclaw/openclaw/security/advisories/GHSA-5xfq-5mr7-426q(disclosure@vulncheck.com)

https://www.vulncheck.com/advisories/openclaw-path-traversal-via-unsanitized-sessionid-and-sessionfile-parameters(disclosure@vulncheck.com)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.