{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-13201", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "state": "PUBLISHED", "assignerShortName": "redhat", "dateReserved": "2026-06-24T13:58:29.925Z", "datePublished": "2026-06-24T20:39:00.173Z", "dateUpdated": "2026-06-24T20:39:00.173Z"}, "containers": {"cna": {"title": "Kubevirt: virt-handler-rhel9: kubevirt: safepath openatnofollow symlink following via /proc/self/fd allows host file metadata modification", "metrics": [{"other": {"content": {"value": "Moderate", "namespace": "https://access.redhat.com/security/updates/classification/"}, "type": "Red Hat severity rating"}}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 5.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L", "version": "3.1"}, "format": "CVSS"}], "descriptions": [{"lang": "en", "value": "A flaw was found in KubeVirt's safepath package. The OpenAtNoFollow function uses O_PATH|O_NOFOLLOW to obtain a file descriptor to a path leaf, but downstream helpers operate via /proc/self/fd/N using link-following syscalls. When the leaf is a symlink, the kernel dereferences it, defeating the intended no-follow protection. An attacker with access to a virt-launcher pod can exploit this to cause virt-handler to apply file ownership or permission changes to an unintended host path."}], "affected": [{"vendor": "Red Hat", "product": "Red Hat OpenShift Virtualization 4", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "container-native-virtualization/virt-handler", "defaultStatus": "affected", "cpes": ["cpe:/a:redhat:container_native_virtualization:4"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Virtualization 4", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "container-native-virtualization/virt-handler-rhel9", "defaultStatus": "affected", "cpes": ["cpe:/a:redhat:container_native_virtualization:4"]}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2026-13201", "tags": ["vdb-entry", "x_refsource_REDHAT"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2492203", "name": "RHBZ#2492203", "tags": ["issue-tracking", "x_refsource_REDHAT"]}], "datePublic": "2026-06-24T00:00:00.000Z", "problemTypes": [{"descriptions": [{"cweId": "CWE-61", "description": "UNIX Symbolic Link (Symlink) Following", "lang": "en", "type": "CWE"}]}], "x_redhatCweChain": "CWE-61: UNIX Symbolic Link (Symlink) Following", "workarounds": [{"lang": "en", "value": "The following default configurations in OpenShift Virtualization significantly reduce exploitability and impact:\n\n1. Ensure SELinux is in enforcing mode (default in OpenShift). This restricts the set of host files that virt-handler can modify through this path, blocking operations on files with protected security labels.\n2. RHCOS immutable filesystem layers prevent modification of core OS files.\n3. Review RBAC policies to limit unnecessary pods/exec permissions on virt-launcher pods to reduce the attacker pool."}], "timeline": [{"lang": "en", "time": "2026-06-24T13:52:04.691Z", "value": "Reported to Red Hat."}, {"lang": "en", "time": "2026-06-24T00:00:00.000Z", "value": "Made public."}], "credits": [{"lang": "en", "value": "This issue was discovered by Huzaifa Sidhpurwala (Red Hat)."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2026-06-24T20:39:00.173Z"}, "x_generator": {"engine": "cvelib 1.8.0"}}}}

{}

{}

{"acknowledgement": "This issue was discovered by Huzaifa Sidhpurwala (Red Hat).", "bugzilla": {"description": "kubevirt: virt-handler-rhel9: kubevirt: safepath OpenAtNoFollow symlink following via /proc/self/fd allows host file metadata modification", "id": "2492203", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2492203"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.2", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L", "status": "draft"}, "cwe": "CWE-61", "details": ["A flaw was found in KubeVirt's safepath package. The OpenAtNoFollow function uses O_PATH|O_NOFOLLOW to obtain a file descriptor to a path leaf, but downstream helpers operate via /proc/self/fd/N using link-following syscalls. When the leaf is a symlink, the kernel dereferences it, defeating the intended no-follow protection. An attacker with access to a virt-launcher pod can exploit this to cause virt-handler to apply file ownership or permission changes to an unintended host path."], "mitigation": {"lang": "en:us", "value": "The following default configurations in OpenShift Virtualization significantly reduce exploitability and impact:\n1. Ensure SELinux is in enforcing mode (default in OpenShift). This restricts the set of host files that virt-handler can modify through this path, blocking operations on files with protected security labels.\n2. RHCOS immutable filesystem layers prevent modification of core OS files.\n3. Review RBAC policies to limit unnecessary pods/exec permissions on virt-launcher pods to reduce the attacker pool."}, "name": "CVE-2026-13201", "package_state": [{"cpe": "cpe:/a:redhat:container_native_virtualization:4", "fix_state": "Fix deferred", "package_name": "container-native-virtualization/virt-handler", "product_name": "Red Hat OpenShift Virtualization 4"}, {"cpe": "cpe:/a:redhat:container_native_virtualization:4", "fix_state": "Fix deferred", "package_name": "container-native-virtualization/virt-handler-rhel9", "product_name": "Red Hat OpenShift Virtualization 4"}], "public_date": "2026-06-24T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-13201\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-13201"], "statement": "A flaw was found in KubeVirt's safepath package where OpenAtNoFollow obtains a file descriptor to a leaf symlink using O_PATH|O_NOFOLLOW, then downstream helpers operate via /proc/self/fd/N which resolves through the symlink, defeating the intended no-follow protection. A namespace-level tenant with pod access can place a symlink in the virt-launcher filesystem, causing virt-handler (running as root on the node) to apply chown/chmod operations to an unintended host file. The direct impact is limited to blind modification of file ownership and permissions with hardcoded values \u2014 the attacker cannot read or write file contents and remains confined to the container. In default OpenShift Virtualization deployments, SELinux mandatory access controls restrict the set of host files that virt-handler can modify, and RHCOS immutable filesystem layers further reduce the attack surface.", "threat_severity": "Moderate"}

{"created": "2026-06-24T22:45:15.369485+00:00", "updated": "2026-06-25T00:30:03.686674+00:00", "vendors": []}