GHSA-8jpq-5h99-ff5r
Suggest an improvement- Source
- https://github.com/advisories/GHSA-8jpq-5h99-ff5r
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-8jpq-5h99-ff5r/GHSA-8jpq-5h99-ff5r.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-8jpq-5h99-ff5r
- Aliases
- Published
- 2026-02-17T21:41:52Z
- Modified
- 2026-02-20T16:58:05.071255Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- OpenClaw has a local file disclosure via sendMediaFeishu in Feishu extension
- Details
-
Summary
The Feishu extension previously allowed
sendMediaFeishuto treat attacker-controlledmediaUrlvalues as local filesystem paths and read them directly.Affected versions
< 2026.2.14
Patched versions
>= 2026.2.14
Impact
If an attacker can influence tool calls (directly or via prompt injection), they may be able to exfiltrate local files by supplying paths such as
/etc/passwdasmediaUrl.Remediation
Upgrade to OpenClaw
2026.2.14or newer.Notes
The fix removes direct local file reads from this path and routes media loading through hardened helpers that enforce local-root restrictions.
Fix commit 5b4121d60 confirmed on main and in v2026.2.14. Upgrade to
openclaw >= 2026.2.14. - Database specific
{ "github_reviewed": true, "github_reviewed_at": "2026-02-17T21:41:52Z", "cwe_ids": [ "CWE-22" ], "severity": "HIGH", "nvd_published_at": "2026-02-19T23:16:25Z" }- References
-
- https://github.com/openclaw/openclaw/security/advisories/GHSA-8jpq-5h99-ff5r
- https://nvd.nist.gov/vuln/detail/CVE-2026-26321
- https://github.com/openclaw/openclaw/commit/5b4121d6011a48c71e747e3c18197f180b872c5d
- https://github.com/openclaw/openclaw
- https://github.com/openclaw/openclaw/releases/tag/v2026.2.14
Affected packages
npm / openclaw
Package
- Name
- openclaw
- View open source insights on deps.dev
- Purl
- pkg:npm/openclaw