Impact
OpenClaw before 2026.4.7 contains an arbitrary file read vulnerability in the memory-wiki ingest feature. An authenticated Gateway operator with the operator.write scope can specify any local file path when importing content into wiki memory, enabling disclosure of files outside the intended ingest sources. This can lead to confidential data exposure, including configuration files or system credentials, potentially allowing an attacker to compromise the host if other privileges are gained.
Affected Systems
The affected product is OpenClaw, all releases earlier than version 2026.4.7. No other vendors or product variants are listed.
Risk and Exploitability
The CVSS score is 7.1, indicating a high risk level. The EPSS score is not available, and the issue is not listed in CISA’s KEV catalog. The vulnerability requires authenticated access with operator.write scope; therefore the likely attack vector is an insider or compromised operator account. Once access is present, the attacker can directly read arbitrary files on the server by using the memory-wiki ingest functionality.
OpenCVE Enrichment