CVE-2026-41384 — OpenClaw before 2026.3.24 contains an environment variable injection vulnerability in the CLI backend runner that allows attackers to inject malicious environment variables through workspace configura — CVE Database · The Intelligence Room