CVE-2026-9804: KubeVirt virt-exportserver Path Traversal Information Disclosure
KubeVirt's virt-exportserver contains a path traversal flaw that allows authenticated attackers with namespace-level access to read arbitrary files from the exporter pod. An attacker can exploit this by placing a symbolic link in an exported filesystem that points outside its intended boundary, effectively bypassing file access restrictions and exposing sensitive data stored on the pod.
Source data · NVD / CISA · public domain
- CVSS
- 3.1 · 7.7 HIGH · CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
- Weaknesses (CWE)
- CWE-59
- Affected products
- 0 configuration(s)
- Published / Modified
- 2026-05-28 / 2026-06-30
NVD description (verbatim)
A flaw was found in KubeVirt's virt-exportserver component. An attacker with specific namespace-level access can exploit a path traversal vulnerability in the VMExport directory endpoint. By placing a symbolic link (symlink) within an exported filesystem Persistent Volume Claim (PVC) that points outside its designated mount root, the attacker can read arbitrary files from the exporter pod's filesystem. This leads to information disclosure, potentially exposing sensitive data.
15 reference(s) · View on NVD →
SEC.co analysis · AI-assisted, reviewed against source
Technical summary
CVE-2026-9804 is a path traversal vulnerability in KubeVirt's virt-exportserver component affecting the VMExport directory endpoint. The vulnerability exists because the component does not properly validate symlink targets during filesystem export operations. An attacker with Kubernetes namespace-level permissions can craft a Persistent Volume Claim (PVC) containing a symbolic link that traverses outside the mount root. When the exporter processes this PVC, it follows the symlink and exposes files that should remain inaccessible, resulting in unauthorized information disclosure. The root cause is insufficient path canonicalization and symlink resolution checks before serving exported content.
Business impact
Compromise of this vulnerability enables lateral data exfiltration within Kubernetes environments. Attackers can extract sensitive application data, database credentials, API keys, or configuration secrets stored on exporter pods. For organizations using KubeVirt for virtualization workloads, this represents a meaningful risk to data confidentiality. The attack requires prior namespace access, limiting exposure to insider threats or compromised service accounts, but the consequences—unauthorized access to pod filesystem secrets—can be severe in multi-tenant or shared cluster scenarios.
Affected systems
The vulnerability affects KubeVirt deployments where the virt-exportserver component is deployed and used for VM export operations. Specifically, systems using VMExport functionality with Persistent Volume Claims are at risk. The vulnerability requires the attacker to have Kubernetes namespace-level access, indicating exposure is primarily to authenticated users or compromised workloads within the cluster. Organizations running older versions of KubeVirt without a confirmed patched version are vulnerable.
Exploitability
Exploitation requires authentication and namespace-level access within a Kubernetes cluster, which significantly reduces opportunistic attack surface. However, the technical barrier to exploitation is low: an attacker need only create or modify a PVC with a crafted symbolic link and trigger an export operation. The attack is deterministic and does not require timing manipulation or user interaction. For insider threats, disgruntled developers, or operators of compromised workloads sharing a namespace, exploitation is straightforward. The vulnerability is not currently listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.
Remediation
Apply vendor patches to KubeVirt as they become available. Verify the patched version against the official KubeVirt release notes and security advisories. In the interim, implement strict Kubernetes RBAC policies to restrict namespace-level permissions and limit which service accounts can create or modify PVCs used with VMExport. Audit existing PVCs for suspicious symbolic links and monitor virt-exportserver logs for path traversal attempts. Consider disabling VMExport functionality if not actively used in your environment.
Patch guidance
Consult the official KubeVirt security advisories and release notes for confirmed patch versions addressing CVE-2026-9804. Apply patches according to your change management process, testing in non-production environments first. The vulnerability was last modified on 2026-06-30, so vendors should have released updates by or shortly after that date. Prioritize patching systems where VMExport is actively used or exposed to untrusted namespace tenants.
Detection guidance
Monitor virt-exportserver pod logs and container runtime for errors related to symlink resolution or path traversal attempts. Track VMExport API calls and PVC creation events within sensitive namespaces. Use Kubernetes audit logs to identify unusual export operations or PVC modifications by service accounts. Network-based detection is limited since the attack occurs within the cluster; focus on pod-level file access auditing and symlink creation patterns. Consider deploying file integrity monitoring on exporter pods to detect unauthorized file reads.
Why prioritize this
This vulnerability merits prompt attention despite requiring authentication. The CVSS score of 7.7 (HIGH) reflects the combination of network accessibility, low complexity, and confidentiality impact. Organizations using KubeVirt in multi-tenant environments or handling sensitive data should prioritize patching. The lack of KEV designation suggests active exploitation may be limited, but the ease of exploitation post-compromise warrants prioritization before attackers gain broader awareness.
Risk score, explained
The CVSS 3.1 score of 7.7 (HIGH) is derived from: (1) Network vector—the vulnerability is reachable over the network via Kubernetes API; (2) Low complexity—no unusual conditions or privilege escalation required beyond namespace access; (3) Low privilege requirement—namespace-level permissions suffice; (4) No user interaction; (5) Changed scope—the compromise can affect confidentiality of data across the cluster scope; and (6) High confidentiality impact—arbitrary file read capability. The score appropriately reflects a meaningful but not critical risk, consistent with the authentication requirement.
Frequently asked questions
Can this vulnerability be exploited without Kubernetes cluster access?
No. Exploitation requires authentication and Kubernetes namespace-level permissions. An attacker must already have the ability to create or modify PVCs within a namespace and trigger VMExport operations. This is not a remote code execution vulnerability accessible over the internet without credentials.
What types of data are at highest risk?
Files stored on the virt-exportserver pod filesystem are exposed, including mounted secrets, configuration files, service account tokens, TLS certificates, and any application data written to the pod. In shared environments, this could include other tenants' exported data or system-level secrets depending on pod permissions.
Does patching require downtime?
Patching requirements depend on your KubeVirt deployment architecture and vendor guidance. Some deployments may support rolling updates with zero downtime, while others may require brief service interruption. Consult vendor documentation and test in a staging environment before deploying patches to production.
Are there compensating controls if we cannot patch immediately?
Yes. Implement strict RBAC to limit who can access VMExport APIs and modify PVCs. Disable VMExport if not needed. Monitor namespace activity for suspicious PVC creation or export operations. Audit and remove unnecessary symbolic links in existing PVCs. These controls reduce risk but do not eliminate the vulnerability; patching remains the preferred long-term solution.
This analysis is based on publicly available vulnerability data as of the publication and modification dates provided. Patch availability, affected versions, and remediation steps should be verified directly against official KubeVirt security advisories and vendor releases. SEC.co makes no warranty regarding the completeness or timeliness of this information. Organizations should conduct their own risk assessment based on their specific KubeVirt deployment configurations and threat model. Source: NVD (public-domain), retrieved 2026-07-07. Analysis generated by SEC.co (claude-haiku-4-5).
Weaknesses (CWE)
Related vulnerabilities
- CVE-2026-41236HIGHFroxlor 2.3.6 Symlink Privilege Escalation to Root
- CVE-2026-49135HIGHCodexBar Insecure Temporary File Handling Allows Local Credential Theft
- CVE-2026-11322MEDIUMHermes WebUI Path Traversal Vulnerability – Credential Exposure Risk
- CVE-2026-40861MEDIUMApache Airflow Path Traversal – Log Directory Symlink and Directory Escape Vulnerability
- CVE-2026-45403LOWAnythingLLM Path Traversal via Symlink Abuse – Patch to 1.13.0
- CVE-2026-6891MEDIUMMy Image Garden macOS Installer Symbolic Link Privilege Escalation
- CVE-2026-6892MEDIUMCanon CUPS Printer Driver macOS Privilege Escalation
- CVE-2018-25382HIGHZechat 1.5 SQL Injection Vulnerability – Unauthenticated Database Access