PT-2026-34769 · Openclaw · Openclaw
Antaisecuritylab
·
Published
2026-04-23
·
Updated
2026-04-25
·
CVE-2026-41338
CVSS v3.1
5.0
Medium
| Vector | AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:L |
Name of the Vulnerable Software and Affected Versions
OpenClaw versions prior to 2026.3.31
Description
A time-of-check-time-of-use (TOCTOU) issue exists in sandbox file operations, which is a race condition where a system checks a condition and then acts on it, but the condition changes between the check and the action. This allows attackers to bypass fd-based defenses by exploiting check-then-act patterns in the
apply patch(), remove(), and mkdir() functions to manipulate files between validation and execution.Recommendations
Update to version 2026.3.31.
As a temporary workaround, restrict access to the
apply patch(), remove(), and mkdir() functions to minimize the risk of exploitation.Fix
Time Of Check To Time Of Use
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Openclaw