CVE-2026-32903

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.3.2

Description The software contains a symlink traversal issue within the stageSandboxMedia component. This allows attackers to overwrite files outside the designated sandbox workspace. The issue stems from unvalidated destination paths during media inbound writes, enabling exploitation through symlink traversal to overwrite host files beyond the intended sandbox boundaries.

Recommendations Update to version 2026.3.2 or later.