GHSA-h7f7-89mm-pqh6
Suggest an improvement- Source
- https://github.com/advisories/GHSA-h7f7-89mm-pqh6
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/02/GHSA-h7f7-89mm-pqh6/GHSA-h7f7-89mm-pqh6.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-h7f7-89mm-pqh6
- Aliases
- Published
- 2026-02-18T22:44:18Z
- Modified
- 2026-02-20T17:04:15.969918Z
- Severity
-
- 6.8 (Medium) CVSS_V4 - CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N CVSS Calculator
- Summary
- OpenClaw hardened the skill download target directory validation
- Details
-
Affected Packages / Versions
- Package:
openclaw(npm) - Affected versions:
<= 2026.2.14 - Fixed in: planned release
2026.2.15
Impact
A bug in
downloadskill installation allowedtargetDirvalues from skill frontmatter to resolve outside the per-skill tools directory if not strictly validated. In the admin-onlyskills.installflow, this could write files outside the intended install sandbox.Fix Commit(s)
- 2363e1b08 fix(security): restrict skill download target paths
- b6305e972 test(skills): split installer security coverage
Acknowledgement
Thanks @Adam55A-code for reporting.
- Package:
- Database specific
{ "severity": "MODERATE", "cwe_ids": [ "CWE-73" ], "github_reviewed": true, "github_reviewed_at": "2026-02-18T22:44:18Z", "nvd_published_at": "2026-02-20T00:16:17Z" }- References
-
- https://github.com/openclaw/openclaw/security/advisories/GHSA-h7f7-89mm-pqh6
- https://nvd.nist.gov/vuln/detail/CVE-2026-27008
- https://github.com/openclaw/openclaw/commit/2363e1b0853a028e47f90dcc1066e3e9809d65f1
- https://github.com/openclaw/openclaw/commit/b6305e97256d67e439719faacf5af3de9727d6e1
- https://github.com/openclaw/openclaw
- https://github.com/openclaw/openclaw/releases/tag/v2026.2.15
Affected packages
npm / openclaw
Package
- Name
- openclaw
- View open source insights on deps.dev
- Purl
- pkg:npm/openclaw