Description

OpenClaw versions prior to 2026.2.12 fail to validate the sessionFile path parameter, allowing authenticated gateway clients to write transcript data to arbitrary locations on the host filesystem. Attackers can supply a sessionFile path outside the sessions directory to create files and append data repeatedly, potentially causing configuration corruption or denial of service.

INFO

Published Date :

2026-03-05T21:59:37.255Z

Last Modified :

2026-03-05T22:28:00.605Z

Source :

VulnCheck
AFFECTED PRODUCTS

The following products are affected by CVE-2026-28459 vulnerability.

Vendors Products
Openclaw
  • Openclaw
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-28459.

URL Resource
https://github.com/openclaw/openclaw/commit/25950bcbb8ba4d8cde002557f6e27c219ae4deda cve-icon cve-icon
https://github.com/openclaw/openclaw/commit/4199f9889f0c307b77096a229b9e085b8d856c26 cve-icon cve-icon
https://github.com/openclaw/openclaw/security/advisories/GHSA-64qx-vpxx-mvqf cve-icon cve-icon
https://www.vulncheck.com/advisories/openclaw-arbitrary-file-write-via-untrusted-sessionfile-path cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact