OpenClaw Filesystem Policy Bypass Vulnerability in DOCX Upload Processing
Vulnerability
A vulnerability in OpenClaw versions prior to 2026.4.8 allows for a filesystem policy bypass during DOCX file uploads. This issue enables local file reads outside designated workspace boundaries. The vulnerability arises in the processing of DOCX upload blocks, where the upload_file and upload_image endpoints can be exploited to access files beyond the intended workspace-only filesystem policy.
Impact
Exploitation of this vulnerability could lead to unauthorized access to local files outside the designated workspace boundaries, bypassing the application's filesystem policy.
Reproduction
The vulnerability can be reproduced by uploading a DOCX file through the upload_file or upload_image endpoints. The uploaded file can then be processed in a way that reads local files outside the application's designated workspace boundaries, taking advantage of the bypassed filesystem policy.
Remediation
Users can update to OpenClaw version 2026.4.8 or later, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.