CVE-2026-44996
Last modified
CVE-2026-44996 is a medium-severity vulnerability rated 6.3/10 on the CVSS scale. OpenClaw before 2026.4.15 contains an arbitrary local file read vulnerability in the webchat audio embedding helper that fails to apply local media root containment checks. Attackers can influence agent or tool-produced ReplyPayload.mediaUrl parameters to resolve absolute local paths or file URLs, read audio-like files, and embed them base64-encoded into webchat responses.. EPSS estimates a 0.30% chance of exploitation in the next 30 days.
Description
OpenClaw before 2026.4.15 contains an arbitrary local file read vulnerability in the webchat audio embedding helper that fails to apply local media root containment checks. Attackers can influence agent or tool-produced ReplyPayload.mediaUrl parameters to resolve absolute local paths or file URLs, read audio-like files, and embed them base64-encoded into webchat responses.
Metrics
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Openclaw | Openclaw | < 2026.4.15 |
References
- https://github.com/openclaw/openclaw/security/advisories/GHSA-gfg9-5357-hv4cThird Party Advisory
- https://www.vulncheck.com/advisories/openclaw-arbitrary-local-file-read-via-webchat-audio-embeddingPatch, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2026-44996?
How severe is CVE-2026-44996?
How do I fix CVE-2026-44996?
Are you affected by CVE-2026-44996?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST