Security Advisory

CVE-2026-4039

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-12 12:02:10

Last updated 2026-03-12 13:10:51

Assigner VulDB

State PUBLISHED

Description

A vulnerability was determined in OpenClaw 2026.2.19-2. This vulnerability affects the function applySkillConfigenvOverrides of the component Skill Env Handler. Executing a manipulation can lead to code injection. It is possible to launch the attack remotely. Upgrading to version 2026.2.21-beta.1 is able to resolve this issue. This patch is called 8c9f35cdb51692b650ddf05b259ccdd75cc9a83c. It is recommended to upgrade the affected component.

← Browse all CVEs View on cve.org ↗