Link following in Froxlor - CVE-2026-41236
Published: June 29, 2026
Froxlor
Detailed vulnerability description
The vulnerability allows a remote user to escalate privileges to root.
The vulnerability exists due to improper link resolution before file access in the SSH key synchronization path for ~/.ssh/authorized_keys when processing SSH key synchronization for a customer-controlled home directory. A remote user can replace ~/.ssh/authorized_keys with a symbolic link to /root/.ssh/authorized_keys and submit a public key to escalate privileges to root.
Exploitation requires a shell-enabled customer account, control over the assigned home directory, and execution of the root-owned cron synchronization task.