Which versions of Openclaw are affected by CVE-2026-32846?

OpenClaw versions up to 2026.3.23 contain a path traversal vulnerability allowing unauthenticated attackers to read sensitive files such as system configurations, environment variables, and SSH…. A patch is available.

Is there a public PoC exploit available for CVE-2026-32846?

Yes, a public proof-of-concept exploit is available for CVE-2026-32846. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate CVE-2026-32846?

Within 24 hours: Identify all systems running OpenClaw versions ≤2026.3.23 and assess exposure in air-gapped or internet-facing environments. Within 7 days: Apply vendor patch from commit 4797bbc or later released version; test in non-production environment before deployment. Within 30 days: Complete patch rollout across all affected instances and conduct audit of file access logs for signs of exploitation.

Openclaw CVE-2026-32846

Q: What is the CVSS score of CVE-2026-32846?

CVE-2026-32846 has a CVSS 4.0 base score of 8.7 (High). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.1%.

EUVD-2026-16248 HIGH

Path Traversal (CWE-22)

2026-03-26 VulnCheck

GHSA-hggm-x7r9-mm7v

Path Traversal Openclaw

8.7

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

8.7 HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Lifecycle Timeline

PoC Detected

Mar 31, 2026 - 21:40 vuln.today

Public exploit code

EUVD ID Assigned

Mar 26, 2026 - 16:45 euvd

EUVD-2026-16248

Analysis Generated

Mar 26, 2026 - 16:45 vuln.today

Patch released

Mar 26, 2026 - 16:45 nvd

Patch available

CVE Published

Mar 26, 2026 - 16:36 nvd

HIGH 8.7

DescriptionCVE.org

OpenClaw through 2026.3.23 (fixed in commit 4797bbc) contains a path traversal vulnerability in media parsing that allows attackers to read arbitrary files by bypassing path validation in the isLikelyLocalPath() and isValidMedia() functions. Attackers can exploit incomplete validation and the allowBareFilename bypass to reference files outside the intended application sandbox, resulting in disclosure of sensitive information including system files, environment files, and SSH keys.

AnalysisAI

Path traversal in OpenClaw through version 2026.3.23 enables unauthenticated remote attackers to read arbitrary files including system configurations, environment files, and SSH private keys by bypassing media parsing validation functions. The vulnerability stems from incomplete path validation in isLikelyLocalPath() and isValidMedia() functions, with an allowBareFilename bypass permitting sandbox escape. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Craft malicious media file path

Delivery

Bypass isLikelyLocalPath() validation

Exploit

Traverse directory hierarchy with ../ sequences

Execution

Access files outside sandbox

Impact

Read sensitive files like SSH keys

Access

Craft malicious media file path

Delivery

Bypass isLikelyLocalPath() validation

Exploit

Traverse directory hierarchy with ../ sequences

Execution

Access files outside sandbox

Impact

Read sensitive files like SSH keys

Vulnerability AssessmentAI

Exploitation	Remote unauthenticated attacker can exploit OpenClaw through version 2026.3.23 via media parsing functions. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	The CVSS 8.7 HIGH severity reflects genuine risk given the attack vector characteristics: network-accessible (AV:N), no authentication required (PR:N), low attack complexity (AC:L), and no user interaction needed (UI:N). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An unauthenticated remote attacker crafts a malicious media file reference containing path traversal sequences (e.g., ../../etc/passwd or ../../root/.ssh/id_rsa) and submits it to the OpenClaw media parsing interface via HTTP request. The incomplete validation in isLikelyLocalPath() and isValidMedia() functions, combined with the allowBareFilename bypass, permits the application to process the traversal path and return the contents of files outside the intended sandbox, disclosing SSH private keys, application configuration files containing credentials, or environment files with API tokens that enable further compromise of the system or connected services.
Remediation	Upgrade OpenClaw to commit 4797bbc5b96e2cca5532e43b58915c051746fe37 or later, which contains the fix for the path traversal vulnerability (see patch at https://github.com/openclaw/openclaw/commit/4797bbc5b96e2cca5532e43b58915c051746fe37 and pull request https://github.com/openclaw/openclaw/pull/54642). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all systems running OpenClaw versions ≤2026.3.23 and assess exposure in air-gapped or internet-facing environments. …

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-53836 HIGH This Week

8.7 Jun 12

Remote code execution in OpenClaw before 2026.5.12 allows authenticated operators to bypass the PowerShell execution all

CVE-2026-53822 HIGH This Week

8.7 Jun 12

Command injection in OpenClaw before 2026.5.18 allows authenticated attackers to modify shell wrapper argv between appro

CVE-2026-53819 HIGH This Week

8.7 Jun 11

Arbitrary code execution in OpenClaw before 2026.5.27 lets attackers hijack the Homebrew executable resolved during skil

CVE-2026-53817 HIGH This Week

8.7 Jun 11

Authentication bypass in OpenClaw before 2026.5.22 allows authenticated network attackers to spoof locality information

CVE-2026-53821 HIGH This Week

8.7 Jun 12

Privilege escalation in OpenClaw before 2026.5.18 allows WebSocket-connected Control UI clients to claim operator.admin

CVE-2026-32846 vulnerability details – vuln.today

Back

Openclaw CVE-2026-32846

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

More from same product – last 7 days

Share

External POC / Exploit Code