File Overwrite Vulnerability in Podman by Red Hat
CVE-2025-9566

8.1HIGH

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 10; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 9; Red Hat Openshift Container Platform 4
Vendor: CVE Published:; 5 September 2025

What is CVE-2025-9566?

A security vulnerability in Podman allows an attacker to exploit the kube play command, enabling them to overwrite host files when a kube file container contains a Secret or a ConfigMap volume mount with a symbolic link to a host file path. While the attacker can specify the target file to be overwritten, they cannot control the content that is written into the file. This could lead to data loss or system misconfiguration and serves as a potential vector for further exploitation.

References

https://access.redhat.com/security/cve/CVE-2025-9566

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2393152

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 5, 2025
Vulnerability Reserved
Aug 27, 2025

Credit

This issue was discovered by Paul Holzinger (Red Hat).