Duplicate Advisory: OpenClaw: OpenShell FS bridge writes stay pinned to the sandbox mount root

GHSA-6f72-9gxx-98mj

Published May 6, 2026 · Modified May 11, 2026

Description

Duplicate Advisory

This advisory has been withdrawn because it is a duplicate of GHSA-wppj-c6mr-83jj. This link is maintained to preserve external references.

Original Description

OpenClaw before 2026.4.22 contains a time-of-check/time-of-use race condition in OpenShell sandbox filesystem writes that allows attackers to redirect writes outside the intended mount root. Attackers can exploit symlink swaps during filesystem operations to bypass sandbox restrictions and write files outside the local mount root.

References

WEB https://github.com/openclaw/openclaw/security/advisories/GHSA-wppj-c6mr-83jj
ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2026-44112
WEB https://github.com/openclaw/openclaw/commit/7be82d4fd1193bcb7e44ee38838f00bf924ffa76
WEB https://www.vulncheck.com/advisories/openclaw-symlink-swap-race-condition-in-openshell-fs-bridge-writes

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes