Main Vulnerability Database Vulnerabilities #VU132136

Improper access control in Kata Containers - CVE-2026-41326

Published: May 22, 2026

Vulnerability identifier: #VU132136

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2026-41326

CWE-ID: CWE-284

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Kata Containers

Affected software:
Kata Containers

Detailed vulnerability description

The vulnerability allows a remote attacker to overwrite files inside the guest workload image and disclose sensitive information from containers.

The vulnerability exists due to improper access control in the CopyFile policy and CopyFile handler when processing crafted CopyFile requests involving symlinks. A remote attacker can create a symlink from the shared directory to an arbitrary path and then send a second crafted CopyFile request to overwrite files inside the guest workload image and disclose sensitive information from containers.

The issue affects deployments using the upstream genpolicy implementation and is relevant to Confidential Containers workloads whose trust model forbids host access to container images.

How to mitigate CVE-2026-41326

Install security update from vendor's website.

Improper access control in Kata Containers - CVE-2026-41326

Detailed vulnerability description

How to mitigate CVE-2026-41326

Sources

Please verify you're human