OpenClaw File Read Vulnerability via Browser Interaction Routes
Vulnerability
A file read vulnerability has been identified in OpenClaw versions prior to 2026.4.9. This vulnerability allows attackers to bypass navigation guards through browser act/evaluate interactions. Exploitation of this issue enables attackers to access the local Chrome DevTools Protocol (CDP) origin and create or read disallowed file:// pages, despite existing navigation policy restrictions.
Impact
Exploitation of this vulnerability could lead to unauthorized access to local files via the file:// protocol, bypassing established navigation guards and policies.
Reproduction
The vulnerability can be reproduced by using browser interaction routes that trigger navigation events. This can be done by sending 'act' or 'evaluate' commands through the browser's CDP interface. The navigation guards will be bypassed, allowing access to restricted file:// pages.
Remediation
Users are advised to upgrade to OpenClaw version 2026.4.9 or later. The latest version available on npm, 2026.4.14, includes the necessary fix.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.