Critical severity9.9NVD Advisory· Published May 26, 2026· Updated May 28, 2026
CVE-2026-7374
CVE-2026-7374
Description
A flaw was found in KubeVirt's virt-handler component. This vulnerability allows an authenticated OpenShift user with edit permissions in a single namespace to exploit improper symlink validation when connecting to virtual machine console sockets. By replacing the console socket with a symlink to the host's container runtime (CRI-O) socket, an attacker can hijack virt-handler's privileged connection. This enables the attacker to access any Unix socket on the host, potentially leading to full control of the node and the entire cluster.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords2 versionspkg:rpm/suse/kubevirt-1.6&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP7pkg:rpm/suse/kubevirt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP7
< 1.6.6-150700.15.7.1+ 1 more
- (no CPE)range: < 1.6.6-150700.15.7.1
- (no CPE)range: < 1.7.4-150700.3.24.2
Patches
Vulnerability mechanics
References
12- access.redhat.com/errata/RHSA-2026:20720nvd
- access.redhat.com/errata/RHSA-2026:20736nvd
- access.redhat.com/errata/RHSA-2026:20763nvd
- access.redhat.com/errata/RHSA-2026:20767nvd
- access.redhat.com/errata/RHSA-2026:20782nvd
- access.redhat.com/errata/RHSA-2026:20825nvd
- access.redhat.com/errata/RHSA-2026:20866nvd
- access.redhat.com/errata/RHSA-2026:20886nvd
- access.redhat.com/errata/RHSA-2026:20890nvd
- access.redhat.com/errata/RHSA-2026:20975nvd
- access.redhat.com/security/cve/CVE-2026-7374nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.