CVE-2026-22171
HIGH
8,8
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Confidentiality: N/A
Integrity: N/A
Availability: N/A
HIGH
8,2
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: low
Availability: none
Description
AI Translation Available
OpenClaw versions prior to 2026.2.19 contain a path traversal vulnerability in the Feishu media download flow where untrusted media keys are interpolated directly into temporary file paths in extensions/feishu/src/media.ts. An attacker who can control Feishu media key values returned to the client can use traversal segments to escape os.tmpdir() and write arbitrary files within the OpenClaw process permissions.
22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
StableCommon Consequences
Security Scopes Affected:
Integrity
Confidentiality
Availability
Potential Impacts:
Execute Unauthorized Code Or Commands
Modify Files Or Directories
Read Files Or Directories
Dos: Crash, Exit, Or Restart
Applicable Platforms
Technologies:
AI/ML
https://github.com/openclaw/openclaw/commit/c821099157a9767d4df208c6b12f2149465…
https://github.com/openclaw/openclaw/commit/cdb00fe2428000e7a08f9b7848784a00491…
https://github.com/openclaw/openclaw/commit/ec232a9e2dff60f0e3d7e827a7c868db525…
https://github.com/openclaw/openclaw/security/advisories/GHSA-vj3g-5px3-gr46
https://www.vulncheck.com/advisories/openclaw-path-traversal-in-feishu-media-te…