OpenClaw Path Traversal Vulnerability in Browser Control API Allowing Arbitrary File Writes
Vulnerability
A path traversal vulnerability has been identified in OpenClaw versions prior to 2026.2.13. The issue resides in the browser control API, which improperly handles user-supplied output paths for trace and download files. This lack of consistent validation allows attackers with API access to exploit the vulnerability by writing files outside of designated temporary directories. The vulnerability can be triggered through path traversal in the POST /trace/stop, POST /wait/download, and POST /download endpoints.
Impact
Exploitation of this vulnerability could lead to unauthorized file writes outside of intended temporary directories, potentially allowing attackers to manipulate or access sensitive files, depending on the application's filesystem permissions.
Reproduction
To reproduce this vulnerability, send a POST request to the /trace/stop, /wait/download, or /download endpoints with a path that traverses outside the default temporary directory. The default download directory is /tmp/openclaw/downloads, and the trace output can be directed to /tmp/openclaw. The paths can be manipulated to escape these directories, bypassing the intended constraints.
Remediation
Users are advised to upgrade to OpenClaw version 2026.2.13 or later.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.