| tiêu đề | zevorn rt-claw 36d128f72afa0b9d40a21bcd6069b0c193a58f82 (unreleased main, post-v0.2.0) Local File Disclosure via `file://` Scheme (CWE-200) |
|---|
| Mô tả | # Technical Details
A Local File Disclosure vulnerability exists in the `tool_http_request` method in `claw/services/tools/net.c` and the Linux backend `osal/linux/claw_net_linux.c` of rt-claw.
The application fails to enforce an `http://` / `https://` scheme allowlist on attacker-influenced `url` input. The Linux backend passes the URL directly to libcurl, which also supports `file://`, allowing local files to be read and returned through the tool response body.
# Vulnerable Code
File: claw/services/tools/net.c
Method: tool_http_request
Why: The tool forwards attacker-controlled `url` into `claw_net_get()` or `claw_net_post()` without validating the scheme, and the Linux backend calls `curl_easy_setopt(curl, CURLOPT_URL, url)`, allowing `file://` reads and returning the contents in `result["body"]`.
# Reproduction
1. Download `verification_test.py`, `control-http-only-baseline.py`, and `tool_harness.c` from the issue-linked gists.
2. Build the Linux target with `tool_net` enabled and run `python3 llm-enhance/cve-finding/similar/Info_Leak/CVE-2026-32008-http_request_file_scheme-exp/verification_test.py`.
3. Observe that the tool returns the contents of a local canary file; then run the control script and observe only `HTTP request failed` for the benign HTTP baseline.
# Impact
- An attacker who can influence AI tool arguments can read local files accessible to the `rt-claw` process.
- This can expose configuration files, logs, cached data, credentials, and other sensitive runtime files through normal tool output. |
|---|
| Nguồn | ⚠️ https://github.com/zevorn/rt-claw/issues/136 |
|---|
| Người dùng | Eric-x (UID 94869) |
|---|
| Đệ trình | 13/06/2026 05:06 (cách đây 1 tháng) |
|---|
| Kiểm duyệt | 18/07/2026 09:29 (1 month later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 380017 [zevorn rt-claw đến 0.2.0 http_request net.c claw_net_get/claw_net_post tiết lộ thông tin] |
|---|
| điểm | 20 |
|---|