CVE-2026-7374
Published: May 26, 2026
Modified: May 28, 2026
CVSS v3.1
9.9
Description
A flaw was found in KubeVirt's virt-handler component. This vulnerability allows an authenticated OpenShift user with edit permissions in a single namespace to exploit improper symlink validation when connecting to virtual machine console sockets. By replacing the console socket with a symlink to the host's container runtime (CRI-O) socket, an attacker can hijack virt-handler's privileged connection. This enables the attacker to access any Unix socket on the host, potentially leading to full control of the node and the entire cluster.
| Vendor | Product | Versions |
|---|---|---|
Red Hat | Red Hat Container Native Virtualization 4.12 | unaffected 1779375376 - < * |
Red Hat | Red Hat Container Native Virtualization 4.13 | unaffected 1778999881 - < * |
Red Hat | Red Hat Container Native Virtualization 4.14 | unaffected 1779321599 - < * |
Red Hat | Red Hat Container Native Virtualization 4.15 | unaffected 1778859977 - < * |
Red Hat | Red Hat Container Native Virtualization 4.16 | unaffected 1778861274 - < * |
Red Hat | Red Hat Container Native Virtualization 4.17 | unaffected 1779174925 - < * |
Red Hat | Red Hat Container Native Virtualization 4.18 | unaffected 1778887155 - < * |
Red Hat | Red Hat Container Native Virtualization 4.19 | unaffected 1779289071 - < * |
Red Hat | Red Hat Container Native Virtualization 4.2 | unaffected 1779288737 - < * |
Red Hat | Red Hat Container Native Virtualization 4.21 | unaffected 1779420069 - < * |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now