Lucene search
K

4 matches found

NVD
NVD
added 2026/03/19 10:16 p.m.2 views

CVE-2026-32026

OpenClaw versions prior to 2026.2.24 contain an improper path validation vulnerability in sandbox media handling that allows absolute paths under the host temporary directory outside the active sandbox root. Attackers can exploit this by providing malicious media references to read and exfiltrate...

8.6CVSS0.00344EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/19 10:7 p.m.17 views

CVE-2026-32026 OpenClaw < 2026.2.24 - Arbitrary File Read via Improper Temporary Path Validation in Sandbox

OpenClaw versions prior to 2026.2.24 contain an improper path validation vulnerability in sandbox media handling that allows absolute paths under the host temporary directory outside the active sandbox root. Attackers can exploit this by providing malicious media references to read and exfiltrate...

7.1CVSS0.00344EPSS
Exploits0References5
CVE
CVE
added 2026/03/19 10:7 p.m.14 views

CVE-2026-32026

The CVE-2026-32026 issue affects OpenClaw before version 2026.2.24, where improper path validation in sandbox media handling permits access to absolute paths under the host temporary directory outside the active sandbox root. Exploitation via malicious media references in attachment delivery can ...

8.6CVSS5.9AI score0.00344EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/19 10:7 p.m.3 views

CVE-2026-32026 OpenClaw < 2026.2.24 - Arbitrary File Read via Improper Temporary Path Validation in Sandbox

OpenClaw versions prior to 2026.2.24 contain an improper path validation vulnerability in sandbox media handling that allows absolute paths under the host temporary directory outside the active sandbox root. Attackers can exploit this by providing malicious media references to read and exfiltrate...

7.1CVSS5.9AI score0.00344EPSS
Exploits0References5
Rows per page
Query Builder