7 matches found
CVE-2026-26972
OpenClaw is a personal AI assistant. In versions 2026.1.12 through 2026.2.12, OpenClaw browser download helpers accepted an unsanitized output path. When invoked via the browser control gateway routes, this allowed path traversal to write downloads outside the intended OpenClaw temp downloads...
CVE-2026-26972 OpenClaw has a Path Traversal in Browser Download Functionality
OpenClaw is a personal AI assistant. In versions 2026.1.12 through 2026.2.12, OpenClaw browser download helpers accepted an unsanitized output path. When invoked via the browser control gateway routes, this allowed path traversal to write downloads outside the intended OpenClaw temp downloads...
CVE-2026-26972
OpenClaw has a path traversal vulnerability in the browser download helpers. In versions 2026.1.12 through 2026.2.12, the browser download assistant accepted unsanitized output paths, enabling writes outside the intended temp downloads directory when invoked via browser control gateway routes. Ex...
GHSA-XWJM-J929-XQ7C OpenClaw has a Path Traversal in Browser Download Functionality
Summary OpenClaw browser download helpers accepted an unsanitized output path. When invoked via the browser control gateway routes, this allowed path traversal to write downloads outside the intended OpenClaw temp downloads directory. This issue is not exposed via the AI agent tool schema no...
OpenClaw has a Path Traversal in Browser Download Functionality
Summary OpenClaw browser download helpers accepted an unsanitized output path. When invoked via the browser control gateway routes, this allowed path traversal to write downloads outside the intended OpenClaw temp downloads directory. This issue is not exposed via the AI agent tool schema no...
The vulnerability in the Google Updater application for browser-based downloads in Google Chrome and the Windows operating system arises from insecure privilege management. This allows a malicious individual to escalate their privileges through a created file.
The vulnerability of the Google Updater application for browser-based downloads in Google Chrome and Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability allows a malicious actor to elevate their privileges through a specially created file...
January 26, 2017—KB 3216755 (OS Build 14393.726)
January 26, 2017—KB 3216755 OS Build 14393.726 Improvements and fixes This release is only available on the Microsoft Update Catalog website This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed a known issu...