OpenClaw Path Traversal Vulnerability Allowing Workspace Boundary Bypass
Vulnerability
A path traversal vulnerability has been identified in OpenClaw versions prior to 2026.2.26. This vulnerability resides in the workspace boundary validation process, allowing attackers to write files outside the designated workspace. The issue arises from in-workspace symlinks that point to non-existent out-of-root targets. The flaw occurs because the boundary check fails to properly resolve aliases, enabling the first write operation to escape the workspace boundary and create files in arbitrary locations.
Impact
Exploitation of this vulnerability allows for unauthorized file writing outside the intended workspace, potentially leading to arbitrary file creation in sensitive areas of the file system.
Reproduction
To reproduce this vulnerability, create a symlink within the workspace that points to a non-existent location outside the root directory. When a file is written through this symlink, it can bypass the workspace boundary validation and be created in an arbitrary location outside the workspace.
Remediation
Users can update to OpenClaw version 2026.2.26 or later, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.