CVE-2026-45224— Crabbox 路径遍历漏洞

Crabbox < 0.9.0 Path Traversal via Islo Provider Workspace Resolution

Crabbox before 0.9.0 contains a path traversal vulnerability in the Islo provider's workspace path resolution that allows attackers to supply absolute or relative paths that resolve outside the intended /workspace directory. Attackers can craft a malicious .crabbox.yaml or crabbox.yaml file with traversal sequences to cause arbitrary file deletion and overwrite when sync.delete is enabled, as the workspace preparation logic executes rm -rf and mkdir -p operations on the resolved path without proper validation.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

对路径名的限制不恰当(路径遍历)

Crabbox 路径遍历漏洞

Crabbox是openclaw开源的一个远程代码执行与测试环境管理工具。 Crabbox 0.9.0之前版本存在路径遍历漏洞，该漏洞源于Islo提供者工作区路径解析中的路径遍历，可能导致攻击者提供解析到预期/workspace目录之外的绝对或相对路径。攻击者可构造包含遍历序列的恶意.crabbox.yaml或crabbox.yaml文件，当sync.delete启用时导致任意文件删除和覆盖，因为工作区准备逻辑对解析路径执行rm -rf和mkdir -p操作而未进行适当验证。

N/A

N/A