Files or Directories Accessible to External Parties Affecting openclaw package, versions <2026.2.23-beta.1
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-JS-OPENCLAW-15423835
- published5 Mar 2026
- disclosed4 Mar 2026
- creditUnknown
Introduced: 4 Mar 2026
New CVE NOT AVAILABLE CWE-552 (opens in a new tab)Common Weakness Enumeration (CWE) is a category system for software weaknesses
How to fix?
Upgrade openclaw to version 2026.2.23-beta.1 or higher.
Overview
openclaw is a 🦞 OpenClaw — Personal AI Assistant
Affected versions of this package are vulnerable to Files or Directories Accessible to External Parties via the image tool when tools.fs.workspaceOnly is set to true but not enforced for mounted paths resolved by the sandbox file system bridge. An attacker can access and exfiltrate files outside the intended workspace by leveraging the ability to load out-of-workspace mounted images and forward their contents to external model providers.