CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

OSV•added 2026/05/15 2:3 p.m.•3 views

OESA-2026-2358 systemd security update

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. Security Fixes: In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.CVE-2026-40226...

6.4CVSS5.8AI score0.0001EPSS

Exploits0References2

OSV•added 2026/05/09 12:33 p.m.•4 views

OESA-2026-2280 systemd security update

6.4CVSS5.8AI score0.0001EPSS

Exploits0References2

OSV•added 2026/05/09 12:33 p.m.•3 views

OESA-2026-2279 systemd security update

6.4CVSS5.8AI score0.0001EPSS

Exploits0References2

OSV•added 2026/05/09 12:33 p.m.•3 views

OESA-2026-2278 systemd security update

6.4CVSS5.8AI score0.0001EPSS

Exploits0References2

OSV•added 2026/05/09 12:33 p.m.•4 views

OESA-2026-2277 systemd security update

6.4CVSS5.8AI score0.0001EPSS

Exploits0References2

Tenable Nessus•added 2026/04/17 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-40226

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file. CVE-2026-40226 Note that Nessus relies o...

6.4CVSS5.8AI score0.0001EPSS

Exploits0References2

RedhatCVE•added 2026/04/13 11:40 a.m.•1 views

CVE-2026-40226

A flaw was found in nspawn, a container runtime environment within systemd. A local attacker or a process within an nspawn container could exploit this vulnerability by using a specially crafted optional configuration file. This could allow the attacker to escape the container's isolation and...

6.4CVSS5.9AI score0.0001EPSS

Exploits0References4

Microsoft CVE•added 2026/04/12 8:1 a.m.•4 views

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.

...

6.4CVSS5.8AI score0.0001EPSS

Exploits0

SUSE CVE•added 2026/04/11 11:26 p.m.•4 views

SUSE CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.0001EPSS

Exploits0References3

EUVD•added 2026/04/10 6:31 p.m.•1 views

EUVD-2026-21400

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.0001EPSS

Exploits0References2

OSV•added 2026/04/10 4:16 p.m.•1 views

DEBIAN-CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.2AI score0.0001EPSS

Exploits0References1

NVD•added 2026/04/10 4:16 p.m.•0 views

CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS0.0001EPSS

Exploits0References1

OSV•added 2026/04/10 4:16 p.m.•0 views

UBUNTU-CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.0001EPSS

Exploits0References3

UbuntuCve•added 2026/04/10 4:16 p.m.•2 views

CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.0001EPSS

Exploits0References2

Snyk•added 2026/04/10 4:9 p.m.•1 views

Use of Less Trusted Source

Overview Affected versions of this package are vulnerable to Use of Less Trusted Source via the nspawn process. An attacker can gain unauthorized access to the host system by supplying a crafted optional configuration file. Remediation A fix was pushed into the master branch but not yet published...

7.1CVSS5.8AI score0.0001EPSS

Exploits0References2

Cvelist•added 2026/04/10 3:18 p.m.•21 views

CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS0.0001EPSS

Exploits0References1

Vulnrichment•added 2026/04/10 3:18 p.m.•1 views

CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.0001EPSS

Exploits0References1

ATTACKERKB•added 2026/04/10 3:18 p.m.•1 views

CVE-2026-40226

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file...

6.4CVSS5.8AI score0.0001EPSS

Exploits0References2Affected Software1

CVE•added 2026/04/10 3:18 p.m.•10 views

CVE-2026-40226

The CVE affects systemd-nspawn: versions 233–259 (before 260) are vulnerable. A crafted optional config file can trigger an escape-to-host action. Root cause is not detailed beyond this vector in the provided docs. Remediation implied by the reference is upgrading to systemd 260 or later to mitig...

6.4CVSS5.8AI score0.0001EPSS

Exploits0References1Affected Software1