CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

34 matches found

Veracode•added 2026/05/14 6:14 p.m.•10 views

Arbitrary File Read And Write

Incus is vulnerable to arbitrary file read and write. The vulnerability is due to improper enforcement of the pongo2 chroot isolation mechanism in instance template files, which allows an attacker to bypass filesystem restrictions and perform arbitrary file read/write operations on the host syste...

9.9CVSS5.9AI score0.00029EPSS

Exploits0References2Affected Software1

SUSE CVE•added 2026/03/28 12:24 a.m.•1 views

SUSE CVE-2026-33897

Incus is a system container and virtual machine manager. Prior to version 6.23.0, instance template files can be used to cause arbitrary read or writes as root on the host server. Incus allows for pongo2 templates within instances which can be used at various times in the instance lifecycle to...

8.8CVSS6AI score0.00029EPSS

Exploits0References3

Snyk•added 2026/03/27 5:17 p.m.•3 views

Improper Neutralization of Special Elements Used in a Template Engine

Overview Affected versions of this package are vulnerable to Improper Neutralization of Special Elements Used in a Template Engine through improper implementation of the chroot isolation mechanism in the pongo2 template processing. An attacker can gain unauthorized access to read and write...

9.9CVSS6AI score0.00029EPSS

Exploits0References2

EUVD•added 2026/03/27 5:17 p.m.•3 views

EUVD-2026-16466

Incus vulnerable to arbitrary file read and write through pongo templates...

9.9CVSS6AI score0.00029EPSS

Exploits0References3

OSV•added 2026/03/27 5:17 p.m.•2 views

GHSA-83XR-5XXR-MH92 Incus vulnerable to arbitrary file read and write through pongo templates

Summary Instance template files can be used to cause arbitrary read or writes as root on the host server. Details Incus allows for pongo2 templates within instances which can be used at various times in the instance lifecycle to template files inside of the instance. This particular implementatio...

9.9CVSS6AI score0.00029EPSS

Exploits0References4

Snyk•added 2026/03/27 5:17 p.m.•4 views

Improper Neutralization of Special Elements Used in a Template Engine

9.9CVSS6AI score0.00029EPSS

Exploits0References2

Tenable Nessus•added 2026/03/27 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-33897

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incus is a system container and virtual machine manager. Prior to version 6.23.0, instance template files can be used to cause arbitrary read or writes as root ...

9.9CVSS5.9AI score0.00029EPSS

Exploits0References2

RedhatCVE•added 2026/03/26 11:26 p.m.•4 views

CVE-2026-33897

A flaw was found in Incus, a system container and virtual machine manager. An attacker with control over instance template files can exploit a vulnerability in the pongo2 templating engine. This flaw allows for arbitrary read or write operations as the root user on the host server by bypassing th...

9.9CVSS5.9AI score0.00029EPSS

Exploits0References4

NVD•added 2026/03/26 11:16 p.m.•3 views

CVE-2026-33897

9.9CVSS0.00029EPSS

Exploits0References1

OSV•added 2026/03/26 11:16 p.m.•5 views

DEBIAN-CVE-2026-33897

9.9CVSS5.5AI score0.00029EPSS

Exploits0References1

UbuntuCve•added 2026/03/26 11:16 p.m.•3 views

CVE-2026-33897

9.9CVSS5.9AI score0.00029EPSS

Exploits0References3

OSV•added 2026/03/26 11:16 p.m.•3 views

UBUNTU-CVE-2026-33897

9.9CVSS5.9AI score0.00029EPSS

Exploits0References4

Vulnrichment•added 2026/03/26 10:43 p.m.•5 views

CVE-2026-33897 Incus vulnerable to arbitrary file read and write through pongo templates

9.9CVSS6AI score0.00029EPSS

Exploits0References1

Debian CVE•added 2026/03/26 10:43 p.m.•5 views

CVE-2026-33897

9.9CVSS5.5AI score0.00029EPSS

Exploits0

Cvelist•added 2026/03/26 10:43 p.m.•19 views

CVE-2026-33897 Incus vulnerable to arbitrary file read and write through pongo templates

9.9CVSS0.00029EPSS

Exploits0References1

ATTACKERKB•added 2026/03/26 10:43 p.m.•5 views

CVE-2026-33897

9.9CVSS5.9AI score0.00029EPSS

Exploits0References2Affected Software1

AlpineLinux•added 2026/03/26 10:43 p.m.•3 views

CVE-2026-33897

9.9CVSS6AI score0.00029EPSS

Exploits0References1

CVE•added 2026/03/26 10:43 p.m.•13 views

CVE-2026-33897

Incus prior to 6.23.0 is vulnerable to arbitrary file read/write as root on the host via instance template files using pongo2 templates. The pongo2 chroot isolation feature was intended to constrain access to the instance filesystem, but the chroot mechanism is skipped by this implementation, all...

9.9CVSS5.9AI score0.00029EPSS

Exploits0References1Affected Software1

CNNVD•added 2026/03/26 12:0 a.m.•4 views

Incus 安全漏洞

Incus is a system container and virtual machine manager developed by LXC. Versions of Incus prior to 6.23.0 contained security vulnerabilities. These vulnerabilities stemmed from the pongo2 template in instance template files, which bypassed the chroot isolation mechanism, potentially allowing...

9.9CVSS5.9AI score0.00029EPSS

Exploits0References2

Veracode•added 2025/11/21 7:14 a.m.•10 views

Server-Side Template Injection

github.com/lxc/lxd is vulnerable to Server-Side Template Injection SSTI. The vulnerability is due to improper handling of snapshot pattern templates using the Pongo2 template engine, which allows an attacker with instance-configuration permissions to craft malicious templates and read arbitrary...

7.1CVSS7.2AI score0.00073EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by