Home / Vulnerability Intelligence / CVE-2026-41383

CVE-2026-41383 - Vulnerability Analysis

HighCVSS: 8.1

Last Updated: April 28, 2026

OpenClaw - Arbitrary Directory Deletion

Published: April 28, 2026Updated: April 28, 2026Remote Exploitable

Overview

OpenClaw < 2026.4.2 contains an arbitrary directory deletion vulnerability caused by manipulation of remoteWorkspaceDir and remoteAgentWorkspaceDir configuration values in mirror mode, letting attackers delete remote directories during mirror sync operations, exploit requires control over configuration values.

Severity & Score

Severity: High

CVSS Score: 8.1

Impact

Attackers can delete remote directories and replace contents, causing data loss and disruption.

Mitigation

Update to version 2026.4.2 or later.

References

https://github.com/openclaw/openclaw/commit/b21c9840c2e38f4bb338d031511b479d5f07ca25
https://github.com/openclaw/openclaw/security/advisories/GHSA-m34q-h93w-vg5x
https://www.vulncheck.com/advisories/openclaw-arbitrary-remote-directory-deletion-via-mis-scoped-mirror-mode-paths

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-41383
Severity: High
CVSS Score: 8.1
Type: undefined
Status: unconfirmed

CWE

CWE-22

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H