How is CVE-2026-9804 exploited?

Network reachability (required): The virt-exportserver endpoint is exposed over the network, so the attacker must be able to reach the service across the network to interact with the VMExport directory endpoint. Authentication (required): The attacker must hold a valid low-privilege account with namespace-level access; no admin credentials are needed, but unauthenticated access is not sufficient. Victim interaction (not-required): No user interaction or social-engineering step is needed; the attacker manipulates the exported PVC directly without involving another party. Attack complexity (info): Attack complexity is low, meaning the exploit is reliable and requires no special race conditions, memory layout dependencies, or other environmental factors beyond having the necessary namespace access.

What is the impact of CVE-2026-9804?

The attacker reads arbitrary files from the exporter pod's filesystem, including mounted secrets, service-account tokens, and configuration files visible to that pod. Kubernetes service-account credentials or TLS private keys stored in the pod's filesystem can be extracted and reused to escalate access within the cluster. Application configuration files containing database connection strings, API keys, or other credentials become readable without any modification to the running workload.

Back to search

HIGHCVE-2026-9804Published 2026-05-28Modified 2026-05-30CNA redhat

CVE-2026-9804: Kubevirt: kubevirt: vmexport directory symlink escape enables exporter pod file read

A flaw was found in KubeVirt's virt-exportserver component. An attacker with specific namespace-level access can exploit a path traversal vulnerability in the VMExport directory endpoint. By placing a symbolic link (symlink) within an exported filesystem Persistent Volume Claim (PVC) that points outside its designated mount root, the attacker can read arbitrary files from the exporter pod's filesystem. This leads to information disclosure, potentially exposing sensitive data.

HarborGuard Analysis

HarborGuard analysis

Synopsis

A path traversal vulnerability via symlink escape affects KubeVirt's virt-exportserver component in Red Hat OpenShift Virtualization 4. An authenticated attacker with namespace-level access can place a symbolic link inside an exported PVC that points outside the designated mount root, tricking the exporter pod into following it. Successful exploitation allows the attacker to read arbitrary files from the exporter pod's filesystem, disclosing sensitive data. HarborGuard tracks this advisory and will make a patched-image rebuild available as soon as an upstream fix is published.

HarborGuard Coverage

Detection

Detection is available across every HarborGuard environment: the CVE is ingested from upstream feeds (including Red Hat's advisory stream) within minutes of publication and matched against customer images in registries and CI/CD pipelines, covering custom-built images that bundle virt-exportserver or related KubeVirt components.

Available

Triage

HarborGuard scores this issue at CVSS 7.7 HIGH using the published v3.1 vector and can weight that score against each environment's compliance policy to determine urgency. Findings are routed to the appropriate team inbox within each customer organization based on configured ownership rules.

Available

Patch

Because no upstream fix version has been published, HarborGuard re-checks this advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment Red Hat ships a corrected release. For customers with auto-remediation enabled, a rebuild, regression-test run, and PR against affected workloads will be initiated at that point without manual intervention.

Pending upstream

Exploit Conditions

Network reachabilityRequired
The virt-exportserver endpoint is exposed over the network, so the attacker must be able to reach the service across the network to interact with the VMExport directory endpoint.
AuthenticationRequired
The attacker must hold a valid low-privilege account with namespace-level access; no admin credentials are needed, but unauthenticated access is not sufficient.
Victim interactionNot required
No user interaction or social-engineering step is needed; the attacker manipulates the exported PVC directly without involving another party.
Attack complexityDetail
Attack complexity is low, meaning the exploit is reliable and requires no special race conditions, memory layout dependencies, or other environmental factors beyond having the necessary namespace access.

Blast Radius

The attacker reads arbitrary files from the exporter pod's filesystem, including mounted secrets, service-account tokens, and configuration files visible to that pod.
Kubernetes service-account credentials or TLS private keys stored in the pod's filesystem can be extracted and reused to escalate access within the cluster.
Application configuration files containing database connection strings, API keys, or other credentials become readable without any modification to the running workload.

How HarborGuard Handles This

Available on HarborGuard: this CVE is tracked continuously against all images in customer registries and pipelines, with no action required to opt in. Because Red Hat has not yet published a fix for OpenShift Virtualization 4, HarborGuard re-evaluates the advisory on every ingest cycle. In the interim, compensating controls are worth considering: network policy rules that restrict which pods and namespaces can reach the virt-exportserver endpoint, egress filtering on exporter pods to limit what they can access if compromised, and a review of what secrets and service-account tokens are mounted into exporter pod contexts. Where compliance policy permits, customers with auto-remediation enabled will receive a rebuilt image, a regression-test run, and a PR opened against affected workloads automatically once Red Hat publishes a patched release, with no additional configuration needed.

See how HarborGuard automates this

CVSS v3.1: 7.7
Severity: HIGH
Fixed in: —
Affected Products: 2

Affected packages

Red Hat / Red Hat OpenShift Virtualization 4
Red Hat / Red Hat OpenShift Virtualization 4

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

References