OpenClaw Path Traversal Vulnerability in Screen Recording Tool
Vulnerability
A path traversal vulnerability has been identified in OpenClaw versions prior to 2026.4.10. The issue resides in the screen_record tool's outPath parameter, which bypasses workspace-only filesystem guards. This vulnerability allows attackers to specify an outPath outside the designated workspace boundary, enabling them to write files to unintended locations on the system.
Impact
Exploitation of this vulnerability could lead to unauthorized file writes outside the intended workspace, potentially overwriting critical system files or causing other disruptions.
Reproduction
The vulnerability can be reproduced by using the screen_record tool and specifying an outPath parameter that lies outside the workspace boundary. When the tool is executed, it will bypass the normal filesystem guards and write the file to the specified location, such as /etc/passwd.
Remediation
Users are advised to upgrade to OpenClaw version 2026.4.10 or later. The latest npm release, 2026.4.14, includes the necessary fix.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.