Symlink Validation Flaw in KubeVirt's virt-handler Component Affects OpenShift
CVE-2026-7374

9.9CRITICAL

Key Information:

Vendor: Red Hat
Status: Red Hat Openshift Virtualization 4
Vendor: CVE Published:; 26 May 2026

What is CVE-2026-7374?

A flaw in the virt-handler component of KubeVirt allows authenticated OpenShift users with edit permissions to exploit improper symlink validation when accessing virtual machine console sockets. By substituting the console socket with a symlink to the host's container runtime (CRI-O) socket, attackers can hijack the privileged connection of virt-handler. This may grant them unauthorized access to Unix sockets on the host, potentially compromising the integrity and security of the entire node and cluster.

References

https://access.redhat.com/security/cve/CVE-2026-7374

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2463728

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

9.9

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 26, 2026
Vulnerability Reserved
Apr 29, 2026

Credit

This issue was discovered by Sarah Bennert (Red Hat) and Stoyan Nikolov (Red Hat).

CVE-2026-7374 Data

JSON