CVE-2026-26321 | THREATINT

Description

OpenClaw is a personal AI assistant. Prior to OpenClaw version 2026.2.14, the Feishu extension previously allowed `sendMediaFeishu` to treat attacker-controlled `mediaUrl` values as local filesystem paths and read them directly. If an attacker can influence tool calls (directly or via prompt injection), they may be able to exfiltrate local files by supplying paths such as `/etc/passwd` as `mediaUrl`. Upgrade to OpenClaw `2026.2.14` or newer to receive a fix. The fix removes direct local file reads from this path and routes media loading through hardened helpers that enforce local-root restrictions.

PUBLISHED Reserved 2026-02-13 | Published 2026-02-19 | Updated 2026-02-20 | Assigner GitHub_M

HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

< 2026.2.14

affected

References

github.com/...enclaw/security/advisories/GHSA-8jpq-5h99-ff5r

github.com/...ommit/5b4121d6011a48c71e747e3c18197f180b872c5d

github.com/openclaw/openclaw/releases/tag/v2026.2.14

cve.org (CVE-2026-26321)

nvd.nist.gov (CVE-2026-26321)

Download JSON