CVE-2026-44992

Description

## Affected Packages / Versions - Package: `openclaw` (npm) - Affected versions: `>= 2026.4.5, < 2026.4.20` - Patched version: `2026.4.20` ## Impact A malicious workspace `.env` could set `MINIMAX_API_HOST` and redirect credentialed MiniMax requests to an attacker-controlled origin, exposing the MiniMax API key in the outbound `Authorization` header. This requires running OpenClaw from an attacker-controlled workspace. Severity is medium. ## Fix OpenClaw now blocks `MINIMAX_API_HOST` from workspace dotenv injection and removes env-driven URL routing from the affected MiniMax request path. Fix commit: - `2f06696579a1ab0cb5bbbbb6a900414a6b2e3cd1` ## Release Fixed in OpenClaw `2026.4.20`.

How to fix CVE-2026-44992

To remediate CVE-2026-44992, upgrade the affected package to a fixed version below.

• —upgrade to 2026.4.20 or later

Is CVE-2026-44992 being exploited?

Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• >= 2026.4.5, < 2026.4.20

CVSS scores

References (5)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2026-44992
• PATCHgithub.com/openclaw/openclaw
• WEBgithub.com/openclaw/openclaw/commit/2f06696579a1ab0cb5bbbbb6a900414a6b2e3cd1
• WEBgithub.com/openclaw/openclaw/security/advisories/GHSA-h2vw-ph2c-jvwf