Back to CVE List

CVE-2026-53489

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
6.5 / 10
Vector String
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Vulnerability Description

containerd is an open-source container runtime. Versions prior to 2.3.2, 2.2.5 and 2.1.9 contain a bug where the CRI plugin restores container.log from a checkpoint image without validating a symlinked path. This could result in reading an arbitrary file on the host via kubectl logs. This issue has been fixed in versions 2.3.2, 2.2.5 and 2.1.9.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-61
Source
NVD
Vendor
linuxfoundation
Product
containerd

External References

Discussion (0)

Add Comment

No comments yet. Be the first!