Lucene search
K

5 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/10 4:3 p.m.5 views

CVE-2026-35658

OpenClaw before 2026.3.2 contains a filesystem boundary bypass vulnerability in the image tool that fails to honor tools.fs.workspaceOnly restrictions. Attackers can traverse sandbox bridge mounts outside the workspace to read files that other filesystem tools would reject...

6.5CVSS5.8AI score0.00286EPSS
Exploits0References7
EUVD
EUVD
added 2026/04/10 4:3 p.m.3 views

EUVD-2026-21462

OpenClaw before 2026.3.2 contains a filesystem boundary bypass vulnerability in the image tool that fails to honor tools.fs.workspaceOnly restrictions. Attackers can traverse sandbox bridge mounts outside the workspace to read files that other filesystem tools would reject...

6.5CVSS5.8AI score0.00286EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/04/10 4:3 p.m.29 views

CVE-2026-35658 OpenClaw < 2026.3.2 - Filesystem Boundary Bypass in Image Tool

OpenClaw before 2026.3.2 contains a filesystem boundary bypass vulnerability in the image tool that fails to honor tools.fs.workspaceOnly restrictions. Attackers can traverse sandbox bridge mounts outside the workspace to read files that other filesystem tools would reject...

6.5CVSS0.00286EPSS
Exploits0References6
CVE
CVE
added 2026/04/10 4:3 p.m.16 views

CVE-2026-35658

OpenClaw CVE-2026-35658 affects the OpenClaw image tool prior to version 2026.3.2. The vulnerability is a filesystem boundary bypass that ignores tools.fs.workspaceOnly restrictions, allowing an attacker to traverse sandbox bridge mounts outside the workspace and read files that other filesystem ...

6.5CVSS5.8AI score0.00286EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.9 views

PT-2026-31969

OpenClaw before 2026.3.2 contains a filesystem boundary bypass vulnerability in the image tool that fails to honor tools.fs.workspaceOnly restrictions. Attackers can traverse sandbox bridge mounts outside the workspace to read files that other filesystem tools would reject...

6.5CVSS5.8AI score0.00286EPSS
Exploits0References7
Rows per page
Query Builder