CVE-2020-2026— Kata Containers - Guests can trick the kata-runtime into mounting the container image on any host path
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-2026
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Kata Containers - Guests can trick the kata-runtime into mounting the container image on any host path
Source: NVD (National Vulnerability Database)
Vulnerability Description
A malicious guest compromised before a container creation (e.g. a malicious guest image or a guest running multiple containers) can trick the kata runtime into mounting the untrusted container filesystem on any host path, potentially allowing for code execution on the host. This issue affects: Kata Containers 1.11 versions earlier than 1.11.1; Kata Containers 1.10 versions earlier than 1.10.5; Kata Containers 1.9 and earlier versions.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
在文件访问前对链接解析不恰当(链接跟随)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Kata Containers 后置链接漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Kata Containers是Kata Containers社区的一款开源的轻量级虚拟机构建程序。 Kata Containers 1.11.1之前的1.11版本、1.10.5之前的1.10版本和1.9及之前版本中存在后置链接漏洞。攻击者可利用该漏洞诱使kata runtime在任何主机路径上挂载不受信任的容器文件系统,进而在主机上执行代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Kata Containers | Kata Containers | 1.11 ~ 1.11.1 | - |
II. Public POCs for CVE-2020-2026
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2020-2026
请登录查看更多情报信息。
- https://github.com/kata-containers/runtime/releases/tag/1.11.1x_refsource_MISC
- https://github.com/kata-containers/runtime/pull/2713x_refsource_MISC
- https://github.com/kata-containers/runtime/issues/2712x_refsource_MISC
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWACJQSMY5BVDMVTF3FBN7HZSOSFOG3Q/vendor-advisoryx_refsource_FEDORA
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2P7FHA4AF6Y6PAVJBTTQPUEHXZQUOF3P/vendor-advisoryx_refsource_FEDORA
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6JPBKAQBF3OR72N55GWM2TDYQP2OHK6H/vendor-advisoryx_refsource_FEDORA
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNJHSSPCKUGJDVXXIXK2JUWCRJDQX7CE/vendor-advisoryx_refsource_FEDORA
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6W5MKF7HSAIL2AX2BX6RV4WWVGUIKVLS/vendor-advisoryx_refsource_FEDORA
- https://nvd.nist.gov/vuln/detail/CVE-2020-2026
IV. Related Vulnerabilities
Same weakness: CWE-59
- CVE-2021-47949
CyberPanel 2.1 Authenticated Remote Code Execution via Symli - CVE-2026-41882
JetBrains IntelliJ IDEA 后置链接漏洞 - CVE-2026-27105
Dell Alienware Purchased Apps 后置链接漏洞 - CVE-2026-5161
Improper Authentication in TUBITAK BILGEM's Pardus About - CVE-2026-41397
OpenClaw < 2026.3.31 - Sandbox Escape via Unrestricted File
V. Comments for CVE-2020-2026
No comments yet