CVE-2026-43567
medium
CVSS v3
6.5
CVSS v2
—
VIR risk
6.5
Description
OpenClaw: screen_record outPath bypassed workspace-only filesystem guard
Predictions
Exploit likelihood
75%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: disclosure@vulncheck.com — https://github.com/openclaw/openclaw/security/advisories/GHSA-jf25-7968-h2h5
Vendor advisory: disclosure@vulncheck.com — https://github.com/openclaw/openclaw/commit/635bb35b68d8faa5bfa2fda35feadd315122748a
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| openclaw | openclaw | {"endExcluding":"2026.4.10"} | 2026.4.10 |
References
- https://github.com/openclaw/openclaw/commit/635bb35b68d8faa5bfa2fda35feadd315122748a
- https://github.com/openclaw/openclaw/security/advisories/GHSA-jf25-7968-h2h5
- https://www.vulncheck.com/advisories/openclaw-path-traversal-in-screen-record-outpath-parameter
- https://github.com/openclaw/openclaw/pull/63551
- https://github.com/openclaw/openclaw
- https://github.com/advisories/GHSA-jf25-7968-h2h5
CWEs
CWE-862
Verify integrity in audit chain (admin only). AS-IS.