Submeter #857623: zevorn rt-claw 36d128f72afa0b9d40a21bcd6069b0c193a58f82 (unreleased main, post-v0.2.0) Local File Disclosure via `file://` Scheme (CWE-200)informação

Títulozevorn rt-claw 36d128f72afa0b9d40a21bcd6069b0c193a58f82 (unreleased main, post-v0.2.0) Local File Disclosure via `file://` Scheme (CWE-200)
Descrição# Technical Details A Local File Disclosure vulnerability exists in the `tool_http_request` method in `claw/services/tools/net.c` and the Linux backend `osal/linux/claw_net_linux.c` of rt-claw. The application fails to enforce an `http://` / `https://` scheme allowlist on attacker-influenced `url` input. The Linux backend passes the URL directly to libcurl, which also supports `file://`, allowing local files to be read and returned through the tool response body. # Vulnerable Code File: claw/services/tools/net.c Method: tool_http_request Why: The tool forwards attacker-controlled `url` into `claw_net_get()` or `claw_net_post()` without validating the scheme, and the Linux backend calls `curl_easy_setopt(curl, CURLOPT_URL, url)`, allowing `file://` reads and returning the contents in `result["body"]`. # Reproduction 1. Download `verification_test.py`, `control-http-only-baseline.py`, and `tool_harness.c` from the issue-linked gists. 2. Build the Linux target with `tool_net` enabled and run `python3 llm-enhance/cve-finding/similar/Info_Leak/CVE-2026-32008-http_request_file_scheme-exp/verification_test.py`. 3. Observe that the tool returns the contents of a local canary file; then run the control script and observe only `HTTP request failed` for the benign HTTP baseline. # Impact - An attacker who can influence AI tool arguments can read local files accessible to the `rt-claw` process. - This can expose configuration files, logs, cached data, credentials, and other sensitive runtime files through normal tool output.
Fonte⚠️ https://github.com/zevorn/rt-claw/issues/136
Utilizador
 Eric-x (UID 94869)
Submissão13/06/2026 05h06 (há 1 mês)
Moderação18/07/2026 09h29 (1 month later)
EstadoAceite
Entrada VulDB380017 [zevorn rt-claw até 0.2.0 http_request net.c claw_net_get/claw_net_post Divulgação de Informação]
Pontos20

Interested in the pricing of exploits?

See the underground prices here!