CVE-2026-44995

OpenClaw before 2026.4.20 contains an improper environment variable validation vulnerability in MCP stdio server configuration that allows attackers to execute arbitrary code. Malicious workspace configurations can pass dangerous startup variables like NODE_OPTIONS, LD_PRELOAD, or BASH_ENV to spawned MCP server processes, enabling code injection when operators start sessions using those servers.

CVSS v3 7.3 HIGH

7.3^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.3 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/openclaw/openclaw/commit/62fa5071896e95edc7f67d1cebc70a2859e283af	Patch
https://github.com/openclaw/openclaw/commit/85d86ebc4bf3d2226d39d132a484f4f7a299fa1b	Broken Link
https://github.com/openclaw/openclaw/security/advisories/GHSA-mj59-h3q9-ghfh	Third Party Advisory
https://www.vulncheck.com/advisories/openclaw-arbitrary-code-execution-via-mcp-stdio-environment-variables	Third Party Advisory Patch

Configurations

Configuration 1 (hide)

cpe:2.3:a:openclaw:openclaw:*:*:*:*:*:node.js:*:*

History

13 May 2026, 14:11

Type	Values Removed	Values Added
CPE		cpe:2.3:a:openclaw:openclaw::::::node.js::*
First Time		Openclaw Openclaw openclaw
References	~~() https://github.com/openclaw/openclaw/commit/62fa5071896e95edc7f67d1cebc70a2859e283af -~~	() https://github.com/openclaw/openclaw/commit/62fa5071896e95edc7f67d1cebc70a2859e283af - Patch
References	~~() https://github.com/openclaw/openclaw/commit/85d86ebc4bf3d2226d39d132a484f4f7a299fa1b -~~	() https://github.com/openclaw/openclaw/commit/85d86ebc4bf3d2226d39d132a484f4f7a299fa1b - Broken Link
References	~~() https://github.com/openclaw/openclaw/security/advisories/GHSA-mj59-h3q9-ghfh -~~	() https://github.com/openclaw/openclaw/security/advisories/GHSA-mj59-h3q9-ghfh - Third Party Advisory
References	~~() https://www.vulncheck.com/advisories/openclaw-arbitrary-code-execution-via-mcp-stdio-environment-variables -~~	() https://www.vulncheck.com/advisories/openclaw-arbitrary-code-execution-via-mcp-stdio-environment-variables - Third Party Advisory, Patch

11 May 2026, 18:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-05-11 18:16

Updated : 2026-05-13 14:11

NVD link : CVE-2026-44995

Mitre link : CVE-2026-44995

CVE.ORG link : CVE-2026-44995

JSON object : View

Products Affected

openclaw

openclaw

CWE

CWE-829

Inclusion of Functionality from Untrusted Control Sphere

7.3 /10