OpenClaw before 2026.3.31 contains a time-of-check-time...
Moderate severity
Unreviewed
Published
Apr 24, 2026
to the GitHub Advisory Database
•
Updated Apr 24, 2026
Description
Published by the National Vulnerability Database
Apr 23, 2026
Published to the GitHub Advisory Database
Apr 24, 2026
Last updated
Apr 24, 2026
OpenClaw before 2026.3.31 contains a time-of-check-time-of-use vulnerability in sandbox file operations that allows attackers to bypass fd-based defenses. Attackers can exploit check-then-act patterns in apply_patch, remove, and mkdir operations to manipulate files between validation and execution.
References