CVE-2026-32060
Received Received - Intake
Path Traversal in OpenClaw apply_patch Allows Arbitrary File Modification

Publication date: 2026-03-11

Last updated on: 2026-03-16

Assigner: VulnCheck

Description
OpenClaw versions prior to 2026.2.14 contain a path traversal vulnerability in apply_patch that allows attackers to write or delete files outside the configured workspace directory. When apply_patch is enabled without filesystem sandbox containment, attackers can exploit crafted paths including directory traversal sequences or absolute paths to escape workspace boundaries and modify arbitrary files.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-03-11
Last Modified
2026-03-16
Generated
2026-06-16
AI Q&A
2026-03-11
EPSS Evaluated
2026-06-15
NVD
CVE-2026-32060
EUVD
EUVD-2026-11150
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
openclaw openclaw to 2026.2.14 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-32060 is a high-severity path traversal vulnerability in OpenClaw versions prior to 2026.2.14. It exists in the apply_patch function, which, when enabled without filesystem sandbox containment, allows attackers to use crafted file paths containing directory traversal sequences (like ../) or absolute paths to escape the intended workspace directory.

This vulnerability enables attackers to write or delete files outside the configured workspace directory, potentially modifying arbitrary files on the system.

Impact Analysis

The vulnerability allows unauthorized modification or deletion of files outside the intended workspace directory. This can lead to serious impacts including unauthorized file system changes, potential local file disclosure, and compromise of system integrity and availability.

  • Attackers can write or delete arbitrary files on the system.
  • It can lead to high confidentiality, integrity, and availability impacts.
  • The vulnerability can be exploited remotely with low complexity and no user interaction required, assuming the attacker has low privileges.
Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

To mitigate the CVE-2026-32060 vulnerability, you should immediately upgrade OpenClaw to version 2026.2.14 or later, where the vulnerability is fixed.

If upgrading is not immediately possible, consider disabling the apply_patch feature by setting tools.exec.applyPatch.enabled to false if it is not required.

Ensure that the apply_patch function runs with filesystem sandbox containment enabled by keeping the default setting tools.exec.applyPatch.workspaceOnly set to true. This enforces that patch operations are restricted to the workspace directory.

Restrict tool execution permissions and use allowlisting to limit who can trigger patch application, reducing the risk of exploitation by less-trusted users.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-32060. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart