High severity7.0NVD Advisory· Published Feb 11, 2026· Updated Jun 2, 2026
CVE-2026-26158
CVE-2026-26158
Description
A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended extraction directory by crafting a malicious tar archive containing unvalidated hardlink or symlink entries. If the tar archive is extracted with elevated privileges, this flaw can lead to privilege escalation, enabling an attacker to gain unauthorized access to critical system files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
22- osv-coords21 versionspkg:apk/chainguard/busyboxpkg:apk/wolfi/busyboxpkg:rpm/opensuse/busybox&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/busybox&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/busybox&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/busybox-links&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5
< 1.37.0-r58+ 20 more
- (no CPE)range: < 1.37.0-r58
- (no CPE)range: < 1.37.0-r58
- (no CPE)range: < 1.37.0-150500.10.17.1
- (no CPE)range: < 1.37.0-160000.5.1
- (no CPE)range: < 1.37.0-9.1
- (no CPE)range: < 1.37.0-150500.7.11.1
- (no CPE)range: < 1.35.0-150400.3.14.1
- (no CPE)range: < 1.35.0-150400.3.14.1
- (no CPE)range: < 1.37.0-150500.10.17.1
- (no CPE)range: < 1.37.0-150500.10.17.1
- (no CPE)range: < 1.37.0-150700.18.15.1
- (no CPE)range: < 1.35.0-10.3.1
- (no CPE)range: < 1.35.0-150400.3.14.1
- (no CPE)range: < 1.37.0-150500.10.17.1
- (no CPE)range: < 1.37.0-150500.10.17.1
- (no CPE)range: < 1.37.0-160000.5.1
- (no CPE)range: < 1.35.0-150400.3.14.1
- (no CPE)range: < 1.37.0-150500.10.17.1
- (no CPE)range: < 1.37.0-150500.10.17.1
- (no CPE)range: < 1.37.0-160000.5.1
- (no CPE)range: < 1.35.0-10.3.1
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.