Symlink Traversal Vulnerability in ACL Before Version 2.4.0
CVE-2026-54369

8.4HIGH

Key Information:

Vendor

Acl Project

Status
Acl
Vendor
CVE Published:
29 June 2026

What is CVE-2026-54369?

The ACL library, prior to version 2.4.0, is susceptible to a symlink traversal vulnerability. This flaw involves the libacl pathname-based functions, which can be exploited by local attackers. By substituting any component of a pathname with a symbolic link, attackers can gain the ability to escalate their privileges. This compromises the integrity of access control lists, allowing unauthorized read or write operations directed at arbitrary files or directories. Particularly, if an attacker has control over a pathname processed by a privileged caller, they can exploit this vulnerability to manipulate ACLs and elevate their local privileges.

Affected Version(s)

acl 0

References

https://cgit.git.savannah.nongnu.org/cgit/acl.git/commit/...
patch
https://cgit.git.savannah.nongnu.org/cgit/acl.git/commit/...
issue-tracking
https://www.vulncheck.com/advisories/acl-symlink-traversa...
third-party-advisory

CVSS V4

Score:
8.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Andrew Tridgell
Andreas Gruenbacher
.