OpenClaw Path Traversal Vulnerability in Skills Download Installer
Vulnerability
A path traversal vulnerability has been identified in OpenClaw versions prior to 2026.3.8. The issue arises in the skills download installer, which validates the tools root lexically but then reuses the mutable path during the download and copying of archives. This flaw allows a local attacker to rebind the tools-root path between validation and the final write, redirecting the installer to write outside the intended tools directory.
Impact
Exploitation of this vulnerability allows for path traversal, enabling files to be written outside the intended directory, which could lead to other security issues depending on the context.
Reproduction
To reproduce this vulnerability, first validate the tools root directory. Then, rebind the validated path to an alternative location outside the intended directory before the final write operation. This can be done by manipulating the download process to redirect the archive write to an unauthorized location.
Remediation
Users can update to OpenClaw version 2026.3.8 or later, where this vulnerability has been fixed.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.