What is CVE-2026-41364?

CVE-2026-41364 is a high-severity vulnerability in Openclaw, classified under Improper Link Resolution Before File Access. CVSS score: 8.1/10. Published 2026-04-28.

How severe is CVE-2026-41364?

High severity. CVSS v3 base score is 8.1 out of 10.

Vulnerability in Openclaw

CVE-2026-41364

OpenClaw before 2026.3.31 contains a symlink following vulnerability in SSH sandbox tar upload that allows remote attackers to write arbitrary files. Attackers can exploit this by uploading tar archives containing symlinks to escape the sa…

EPSS: 0.002 (40.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H.

Affected products

Openclaw — versions 0, 2026.3.31

Weakness classification (CWE)

CWE-59 — Improper Link Resolution Before File Access

References

GitHub Security Advisory (GHSA-fv94-qvg8-xqpw) (vendor-advisory, Vendor Advisory)
Patch Commit (Patch, patch)
VulnCheck Advisory: OpenClaw < 2026.3.31 - Arbitrary File Write via Symlink Following in SSH Sandbox Tar Upload (Third Party Advisory, third-party-advisory)

Frequently asked questions

What is CVE-2026-41364?: CVE-2026-41364 is a high-severity vulnerability in Openclaw, classified under Improper Link Resolution Before File Access. CVSS score: 8.1/10. Published 2026-04-28.
How severe is CVE-2026-41364?: High severity. CVSS v3 base score is 8.1 out of 10.