CVE-2026-41368 | OpenClaw up to 2026.3.27 Environment Variable ENV exposure of resource (GHSA-jccr-rrw2-vc8h)

A vulnerability described as problematic has been identified in OpenClaw up to 2026.3.27. This impacts an unknown function of the component Environment Variable Handler. Executing a manipulation of the argument ENV can lead to exposure of resource.

This vulnerability is handled as CVE-2026-41368. The attack can be executed remotely. There is not any exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More