Vulnerability Description
OpenClaw versions prior to 2026.2.19 contain a path traversal vulnerability in the Feishu media download flow where untrusted media keys are interpolated directly into temporary file paths in extensions/feishu/src/media.ts. An attacker who can control Feishu media key values returned to the client can use traversal segments to escape os.tmpdir() and write arbitrary files within the OpenClaw process permissions.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openclaw | Openclaw | < 2026.2.19 |
Related Weaknesses (CWE)
References
- https://github.com/openclaw/openclaw/commit/c821099157a9767d4df208c6b12f21494650Patch
- https://github.com/openclaw/openclaw/commit/cdb00fe2428000e7a08f9b7848784a004917Patch
- https://github.com/openclaw/openclaw/commit/ec232a9e2dff60f0e3d7e827a7c868db5254Patch
- https://github.com/openclaw/openclaw/security/advisories/GHSA-vj3g-5px3-gr46MitigationVendor Advisory
- https://www.vulncheck.com/advisories/openclaw-path-traversal-in-feishu-media-temThird Party Advisory
FAQ
What is CVE-2026-22171?
CVE-2026-22171 is a vulnerability with a CVSS score of 8.2 (HIGH). OpenClaw versions prior to 2026.2.19 contain a path traversal vulnerability in the Feishu media download flow where untrusted media keys are interpolated directly into temporary file paths in extensio...
How severe is CVE-2026-22171?
CVE-2026-22171 has been rated HIGH with a CVSS base score of 8.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-22171?
Check the references section above for vendor advisories and patch information. Affected products include: Openclaw Openclaw.