HarborGuard / CVE
Back to search
HIGHCVE-2026-49237Published Modified CNA canonical

CVE-2026-49237: Local Privilege Escalation in Canonical Multipass

An issue was discovered in Canonical Multipass for macOS before version 1.16.3 due to an incomplete fix for CVE-2025-5199. While the patch in version 1.16.0 updated the ownership of the multipassd daemon binary to root:wheel, five co-located binaries (multipass, qemu-img, qemu-system-aarch64, qemu-system-x86_64, and sshfs_server) in /Library/Application Support/com.canonical.multipass/bin/ retain ownership by the installing user and remain writable. Because the root LaunchDaemon (com.canonical.multipassd.plist) configures a PATH environment variable that prioritizes this user-writable directory and invokes these auxiliary binaries by their bare names, a local attacker can replace an auxiliary binary (such as qemu-img) with a malicious wrapper. When the root daemon subsequently triggers the binary during routine execution (e.g., via multipass launch), the malicious code executes with root privileges, leading to local privilege escalation.

HarborGuard Analysis

HarborGuard analysis

Synopsis

A local privilege escalation vulnerability affects Canonical Multipass for macOS before version 1.16.3. An attacker who already has a low-privilege shell on the host can replace one of five user-writable auxiliary binaries (such as qemu-img) in a directory that the root LaunchDaemon searches first when resolving bare binary names; when the daemon later invokes that binary during normal operation, the attacker's code runs with root privileges. Successful exploitation gives the attacker full read, write, and execution access as root on the affected system. A patched-image rebuild at version 1.16.3 is available on HarborGuard for environments running an affected version.

HarborGuard Coverage

Detection

Detection of CVE-2026-49237 is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against container images in customer registries and CI/CD pipelines, including custom-built images that bundle Multipass or its component binaries.

Available
Triage

HarborGuard scores this CVE at 7.8 HIGH (CVSS v3.1) and surfaces it accordingly; per-environment compliance policy weighting is available to adjust priority based on each organization's risk posture, and routing to the appropriate team inbox within each customer org is handled automatically.

Available
Patch

A patched-image rebuild at Multipass version 1.16.3 becomes available on HarborGuard for any environment where an affected version is detected. For customers who opt into auto-remediation, HarborGuard performs the rebuild, runs a regression test suite, and opens a pull request against affected workloads automatically.

Available

Exploit Conditions

  • Network reachabilityNot required

    The attacker needs an existing shell or process on the host; no network access to the service is required to exploit this vulnerability.

  • AuthenticationRequired

    Any low-privilege local account is sufficient; the attacker does not need administrative or root credentials to stage the malicious binary replacement.

  • Victim interactionNot required

    No user interaction is needed; the exploit triggers automatically when the root LaunchDaemon invokes the replaced binary during routine daemon execution.

  • Attack complexityDetail

    The exploit is reliable and condition-free: writing a replacement binary to the user-writable directory is a straightforward file operation with no race conditions or special memory layout requirements.

Blast Radius

  • The attacker gains code execution as root, reading any file on the system including credentials, private keys, and application secrets.
  • The attacker can write or modify any file on the system, including system binaries, configuration files, and persistent storage.
  • The attacker can terminate or manipulate any running process, including security agents and logging daemons.
  • Full root access allows the attacker to install persistent backdoors or kernel extensions that survive reboots.

How HarborGuard Handles This

Available on HarborGuard: detection for CVE-2026-49237 is active across all customer scan targets, matching images that include Multipass binaries below version 1.16.3. For environments with auto-remediation enabled, HarborGuard can trigger a rebuild at the fixed version 1.16.3, run regression tests against the rebuilt image, and open a pull request against affected workloads; median time from CVE publication to merged patch PR for high-severity issues is around 90 minutes for environments with auto-remediation enabled. Where compliance policy requires manual approval, the rebuilt image and findings report are staged and routed to the designated team inbox for review. Because this vulnerability requires local filesystem write access to the Multipass binary directory, customers who cannot immediately update should consider restricting write permissions on /Library/Application Support/com.canonical.multipass/bin/ via configuration management tooling as a compensating control until the patched image is deployed.

See how HarborGuard automates this

Metrics

CVSS v3.1
7.8
Severity
HIGH
Fixed in
1.16.3
Affected Products
1

Fix available

1.16.3
Affected packages
  • Canonical / Multipass
    < 1.16.3 (from 0)
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References