OpenClaw before 2026.3.31 contains a time-of-check-time-of-use race condition in the remote filesystem bridge readFile function that allows sandbox escape. Atta…

OpenClaw versions before 2026.3.31 contain a critical time-of-check-time-of-use (TOCTOU) race condition vulnerability in the remote filesystem bridge readFile function. This security flaw allows attackers to escape sandbox restrictions by exploiting the timing gap between path validation and file read operations. The vulnerability enables unauthorized access to arbitrary files on the system, effectively bypassing the intended security boundaries of the sandbox environment. This represents a significant security risk as it could allow malicious actors to read sensitive files outside the intended scope of the application.