Aether Ai

**Name of the Vulnerable Software and Affected Versions** OpenClaw versions prior to 2026.2.17 **Description** OpenClaw versions prior to 2026.2.17 contain a path traversal flaw in the `$include` directive resolution. This allows reading arbitrary local files outside the configuration directory boundary. An attacker with the ability to modify OpenClaw configuration files can exploit this by specifying absolute paths, traversal sequences, or symbolic links to access sensitive files readable by the OpenClaw process user, including API keys and credentials. The impact is limited by the file permissions of the OpenClaw runtime user. The vulnerability exists due to improper handling of the `$include` directive. **Recommendations** Update OpenClaw to version 2026.2.17 or later.

**Name of the Vulnerable Software and Affected Versions** OpenClaw versions prior to 2026.2.22 **Description** The software reuses the `gateway.auth.token` as a fallback hash secret for owner-ID prompt obfuscation when `commands.ownerDisplay` is set to hash and `commands.ownerDisplaySecret` is unset. This creates a dual-use of authentication secrets across security domains. An attacker with access to system prompts sent to third-party model providers can derive the gateway authentication token from the hash outputs, potentially compromising gateway authentication security. **Recommendations** Update to version 2026.2.22 or later.

**Nome do Software Vulnerável e Versões Afetadas** Versões do OpenClaw anteriores a 2026.2.14 **Descrição** O fluxo de login manual Chutes OAuth no OpenClaw é suscetível a uma contornação da validação de estado CSRF do OAuth. Isso permite que um atacante contorne a proteção CSRF ao convencer um usuário a colar dados de callback OAuth controlados pelo atacante, potencialmente levando à substituição de credenciais e à persistência de tokens para contas não autorizadas. O fluxo automático de callback local não é afetado. **Recomendações** Atualize para a versão 2026.2.14 ou posterior.