Vulnerability Description
OpenClaw before 2026.3.2 contains a filesystem boundary bypass vulnerability in the image tool that fails to honor tools.fs.workspaceOnly restrictions. Attackers can traverse sandbox bridge mounts outside the workspace to read files that other filesystem tools would reject.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openclaw | Openclaw | < 2026.3.2 |
Related Weaknesses (CWE)
References
- https://github.com/openclaw/openclaw/commit/14baadda2c456f3cf749f1f97e8678746a34Patch
- https://github.com/openclaw/openclaw/commit/630f1479c44f78484dfa21bb407cbe6f171dPatch
- https://github.com/openclaw/openclaw/commit/ccfeecb6887cd97937e33a71877ad512741ePatch
- https://github.com/openclaw/openclaw/commit/dd9d9c1c609dcb4579f9e57bd7b5c879d014Patch
- https://github.com/openclaw/openclaw/security/advisories/GHSA-cfp9-w5v9-3q4hVendor Advisory
- https://www.vulncheck.com/advisories/openclaw-filesystem-boundary-bypass-in-imagThird Party Advisory
FAQ
What is CVE-2026-35658?
CVE-2026-35658 is a vulnerability with a CVSS score of 6.5 (MEDIUM). OpenClaw before 2026.3.2 contains a filesystem boundary bypass vulnerability in the image tool that fails to honor tools.fs.workspaceOnly restrictions. Attackers can traverse sandbox bridge mounts out...
How severe is CVE-2026-35658?
CVE-2026-35658 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-35658?
Check the references section above for vendor advisories and patch information. Affected products include: Openclaw Openclaw.