CVE-2026-22171 | OpenClaw up to 2026.2.18 Temporary File media.ts os.tmpdir path traversal (GHSA-vj3g-5px3-gr46)

Inserito da Angelo Barbosa | Mar 18, 2026 | CVE

A vulnerability was found in OpenClaw up to 2026.2.18. It has been rated as critical. Impacted is the function os.tmpdir of the file extensions/feishu/src/media.ts of the component Temporary File Handler. Performing a manipulation results in path traversal.

This vulnerability is reported as CVE-2026-22171. The attack is possible to be carried out remotely. No exploit exists.

Upgrading the affected component is advised.

CVE-2026-22171 | OpenClaw up to 2026.2.18 Temporary File media.ts os.tmpdir path traversal (GHSA-vj3g-5px3-gr46)

Post correlati

CVE-2024-6371 | itsourcecode Pool of Bethesda Online Reservation System 1.0 controller.php rmtype_id sql injection

CVE-2024-13279 | Drupal Two-factor Authentication up to 1.7.x session fixiation

CVE-2026-2184 | Great Developers Certificate Generation System up to 97171bb0e5e22e52eacf4e4fa81773e5f3cffb73 /restructured/csv.php photo os command injection

CVE-2024-53705 | SonicWALL SonicOS SSH Management server-side request forgery (SNWLID-2025-0003)