CVE-2026-4040

LOW SEVERITY

CVSS Score & Metrics

Base Score

3.3 / 10

Vector String

                                        CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N                                    

Vulnerability Description

A vulnerability was identified in OpenClaw up to 2026.2.17. This issue affects the function tools.exec.safeBins of the component File Existence Handler. The manipulation leads to information exposure through discrepancy. The attack needs to be performed locally. Upgrading to version 2026.2.19-beta.1 is capable of addressing this issue. The identifier of the patch is bafdbb6f112409a65decd3d4e7350fbd637c7754. Upgrading the affected component is advised.

Vulnerability Details

Published Date

March 12, 2026

Last Modified

March 16, 2026

CWE ID

CWE-200

Source

NVD

Vendor

openclaw

Product

openclaw

External References

https://github.com/openclaw/openclaw/
https://github.com/openclaw/openclaw/commit/bafdbb6f112409a65decd3d4e7350fbd637c7754
https://github.com/openclaw/openclaw/releases/tag/v2026.2.19-beta.1
https://github.com/openclaw/openclaw/security/advisories/GHSA-6c9j-x93c-rw6j
https://vuldb.com/?ctiid.350652
https://vuldb.com/?id.350652
https://vuldb.com/?submit.769581

CVE-2026-4040

CVSS Score & Metrics

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment