Lucene search
K

7 matches found

NVD
NVD
added 2026/01/23 9:15 p.m.11 views

CVE-2026-1386

A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at...

6CVSS0.00195EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/01/23 8:25 p.m.3 views

CVE-2026-1386 Arbitrary Host File Overwrite via Symlink in Firecracker Jailer

A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at...

6CVSS5.7AI score0.00195EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/23 8:25 p.m.5 views

CVE-2026-1386

A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at...

6CVSS5.9AI score0.00195EPSS
Exploits0References5
EUVD
EUVD
added 2026/01/23 8:25 p.m.5 views

EUVD-2026-4536

A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at...

6CVSS5.7AI score0.00195EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/23 8:25 p.m.23 views

CVE-2026-1386 Arbitrary Host File Overwrite via Symlink in Firecracker Jailer

A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at...

6CVSS0.00195EPSS
Exploits0References4
CVE
CVE
added 2026/01/23 8:25 p.m.25 views

CVE-2026-1386

The CVE-2026-1386 issue affects Firecracker’s jailer component. A local user who has write access to pre-created jailer directories could abuse a UNIX symlink vulnerability during jailer startup to overwrite arbitrary host files when the jailer runs with root privileges. Affected versions include...

6CVSS5.7AI score0.00195EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/23 12:0 a.m.7 views

PT-2026-4532

Name of the Vulnerable Software and Affected Versions Firecracker versions prior to 1.13.2 and version 1.14.0 Description A flaw exists in the jailer component of Firecracker that could allow a local host user with write access to pre-created jailer directories to overwrite arbitrary host files...

6CVSS5.5AI score0.00195EPSS
Exploits0References11
Rows per page
Query Builder