CVE-2026-41330
Published: 21 April 2026
Summary
CVE-2026-41330 is a low-severity Insecure Default Variable Initialization (CWE-453) vulnerability in Openclaw Openclaw. Its CVSS base score is 2.0 (Low).
Operationally, exploitation aligns with the MITRE ATT&CK technique Disable or Modify Tools (T1685); ranked at the 2.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-24018
Vulnerability details
OpenClaw before 2026.3.31 contains an environment variable override vulnerability in host exec policy that fails to properly enforce proxy, TLS, Docker, and Git TLS controls. Attackers can bypass security controls by overriding environment variables to circumvent proxy settings, TLS verification,…
more
Docker restrictions, and Git TLS enforcement.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Env var override directly bypasses proxy/TLS/Docker controls, enabling modification of defensive tool behavior per T1562.001.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.