CVE-2026-7374
9.9 CRITICALA flaw was found in KubeVirt's virt-handler component
Published: 2026-05-26 · Last updated: 2026-05-28
Severity and scoring
- CVSS
- 9.9 CRITICAL
- Vector
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
- CWE
- CWE-59
Description
A flaw was found in KubeVirt's virt-handler component. This vulnerability allows an authenticated OpenShift user with edit permissions in a single namespace to exploit improper symlink validation when connecting to virtual machine console sockets. By replacing the console socket with a symlink to the host's container runtime (CRI-O) socket, an attacker can hijack virt-handler's privileged connection. This enables the attacker to access any Unix socket on the host, potentially leading to full control of the node and the entire cluster.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-7374
- [Other]https://access.redhat.com/errata/RHSA-2026:20720
- [Other]https://access.redhat.com/errata/RHSA-2026:20736
- [Other]https://access.redhat.com/errata/RHSA-2026:20763
- [Other]https://access.redhat.com/errata/RHSA-2026:20767
- [Other]https://access.redhat.com/errata/RHSA-2026:20782
- [Other]https://access.redhat.com/errata/RHSA-2026:20825
- [Other]https://access.redhat.com/errata/RHSA-2026:20866
- [Other]https://access.redhat.com/errata/RHSA-2026:20886
- [Other]https://access.redhat.com/errata/RHSA-2026:20890
- [Other]https://access.redhat.com/errata/RHSA-2026:20975
- [Other]https://access.redhat.com/security/cve/CVE-2026-7374
- [Other]https://bugzilla.redhat.com/show_bug.cgi?id=2463728
Related CVEs
Same CWE
- CVE-2026-45384 — bit7z is a cross-platform C++ static library that allows the compression/extraction of archive files (6.1 MEDIUM)
- CVE-2026-53476 — A flaw was found in assisted-migration-agent (9.6 CRITICAL)
- CVE-2026-11853 — Debusine is an integrated solution to build, distribute and maintain a Debian-based distribution (6.5 MEDIUM)
- CVE-2026-11837 — A local privilege escalation vulnerability was found in the ansible.posix authorized_key module (7.3 HIGH)
- CVE-2026-50511 — Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privilege... (7.8 HIGH)