CVE-2026-4039
EPSS 0.12%OpenClaw: Skill env override host env injection via applySkillConfigEnvOverrides (defense-in-depth)
描述
### Summary `applySkillConfigEnvOverrides` previously copied `skills.entries.*.env` values into the host `process.env` without applying the host env safety policy. ### Impact In affected versions, dangerous process-level variables such as `NODE_OPTIONS` could be injected when unset, which can influence runtime/child-process behavior. ### Required attacker capability An attacker must be able to modify OpenClaw local state/config (for example `~/.openclaw/openclaw.json`) to set `skills.entries.<skill>.env` or related skill config values. ### Remediation Fixed in `2026.2.21` by sanitizing skill env overrides and blocking dangerous host env keys (including `NODE_OPTIONS`) before applying overrides, with regression tests covering blocked dangerous keys. ## Fix Commit(s) - `8c9f35cdb51692b650ddf05b259ccdd75cc9a83c` Found using [MCPwner](https://github.com/Pigyon/MCPwner)
受影響套件(1)
- npm/openclawfrom 0, < 2026.2.21
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 4.0 | — | CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
參考連結(5)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2026-4039
- PATCHhttps://github.com/openclaw/openclaw
- WEBhttps://github.com/openclaw/openclaw/commit/8c9f35cdb51692b650ddf05b259ccdd75cc9a83c
- WEBhttps://github.com/openclaw/openclaw/releases/tag/v2026.2.21
- WEBhttps://github.com/openclaw/openclaw/security/advisories/GHSA-82g8-464f-2mv7