AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

GHSA-8jpq-5h99-ff5r: OpenClaw has a local file disclosure via sendMediaFeishu in Feishu extension

highvulnerability

security

Source: GitHub Advisory DatabaseFebruary 17, 2026CVE-2026-26321

Summary

The Feishu extension in OpenClaw had a vulnerability where the `sendMediaFeishu` function could be tricked into reading files directly from a computer's filesystem by treating attacker-controlled file paths as input. An attacker who could influence how the tool behaves (either directly or through prompt injection, where hidden instructions are hidden in the AI's input) could steal sensitive files like `/etc/passwd`.

Solution / Mitigation

Upgrade to OpenClaw version 2026.2.14 or newer. The fix removes direct local file reads and routes media loading through hardened helpers that enforce local-root restrictions.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.1%

Classification

Attack Type

Data ExtractionPrompt Injection

Attack SophisticationModerate

Impact (CIA+S)

confidentiality

Affected Vendors

LangChain

Affected Packages

openclaw@< 2026.2.14 (fixed: 2026.2.14)

Related Issues

critical

CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-

Same vendorNVD/CVE Database

critical

CVE-2025-45150: Insecure permissions in LangChain-ChatGLM-Webui commit ef829 allows attackers to arbitrarily view and download sensitive

First tracked: February 17, 2026 at 07:00 PM

Classified by LLM (prompt v3) · confidence: 85%