Incorrect Behavior Order: Validate Before Canonicalize in openclaw

Q: How to fix?

Upgrade openclaw to version 2026.2.24 or higher.

Introduced: 3 Mar 2026

NewCWE-180 (opens in a new tab) CWE-22 (opens in a new tab)

How to fix?

Upgrade openclaw to version 2026.2.24 or higher.

Overview

openclaw is a 🦞 OpenClaw — Personal AI Assistant

Affected versions of this package are vulnerable to Incorrect Behavior Order: Validate Before Canonicalize via the boundary validation process for @-prefixed absolute paths when tools.fs.workspaceOnly is set to true. An attacker can access files outside the intended workspace boundary by supplying specially crafted absolute paths that bypass validation checks. This is only exploitable if the non-default configuration tools.fs.workspaceOnly=true is enabled and the sandbox/tooling configuration allows such path handling.

References

GitHub Commit

CVSS Base Scores

version 4.0

version 3.1

Attack Vector (AV)
Local
Attack Complexity (AC)
Low
Attack Requirements (AT)
Present
Privileges Required (PR)
Low
User Interaction (UI)
None

Confidentiality (VC)
High
Integrity (VI)
None
Availability (VA)
None

Confidentiality (SC)
None
Integrity (SI)
None
Availability (SA)
None

Incorrect Behavior Order: Validate Before Canonicalize Affecting openclaw package, versions <2026.2.24

Severity

Do your applications use this vulnerable package?

Introduced: 3 Mar 2026

How to fix?

Overview

References

CVSS Base Scores

Snyk