CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

NVD•added 2026/01/23 9:15 p.m.•8 views

CVE-2026-1386

A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at...

6CVSS0.00011EPSS

Exploits0References4

ATTACKERKB•added 2026/01/23 8:25 p.m.•2 views

CVE-2026-1386

6CVSS5.9AI score0.00011EPSS

Exploits0References5

Vulnrichment•added 2026/01/23 8:25 p.m.•3 views

CVE-2026-1386 Arbitrary Host File Overwrite via Symlink in Firecracker Jailer

6CVSS5.7AI score0.00011EPSS

Exploits0References4

EUVD•added 2026/01/23 8:25 p.m.•4 views

EUVD-2026-4536

6CVSS5.7AI score0.00011EPSS

Exploits0References4

CVE•added 2026/01/23 8:25 p.m.•15 views

CVE-2026-1386

The CVE-2026-1386 issue affects Firecracker’s jailer component. A local user who has write access to pre-created jailer directories could abuse a UNIX symlink vulnerability during jailer startup to overwrite arbitrary host files when the jailer runs with root privileges. Affected versions include...

6CVSS5.7AI score0.00011EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/01/23 8:25 p.m.•20 views

CVE-2026-1386 Arbitrary Host File Overwrite via Symlink in Firecracker Jailer

6CVSS0.00011EPSS

Exploits0References4

Positive Technologies•added 2026/01/23 12:0 a.m.•4 views

PT-2026-4532

Name of the Vulnerable Software and Affected Versions Firecracker versions prior to 1.13.2 and version 1.14.0 Description A flaw exists in the jailer component of Firecracker that could allow a local host user with write access to pre-created jailer directories to overwrite arbitrary host files...

6CVSS5.5AI score0.00011EPSS

Exploits0References11

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by