CVE-2026-23953 (CNNVD-202601-3455)
中文标题:
Incus 注入漏洞
英文标题:
Incus container environment configuration newline injection
漏洞描述
中文描述:
Incus是LXC开源的一个系统容器和虚拟机管理器。 Incus 6.20.0及之前版本存在注入漏洞,该漏洞源于用户可通过换行注入在容器配置中添加任意生命周期钩子,可能导致主机上执行任意命令。
英文描述:
Incus is a system container and virtual machine manager. In versions 6.20.0 and below, a user with the ability to launch a container with a custom YAML configuration (e.g a member of the ‘incus’ group) can create an environment variable containing newlines, which can be used to add additional configuration items in the container’s lxc.conf due to newline injection. This can allow adding arbitrary lifecycle hooks, ultimately resulting in arbitrary command execution on the host. Exploiting this issue on IncusOS requires a slight modification of the payload to change to a different writable directory for the validation step (e.g /tmp). This can be confirmed with a second container with /tmp mounted from the host (A privileged action for validation only). A fix is planned for versions 6.0.6 and 6.21.0, but they have not been released at the time of publication.
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| lxc | incus | >= 6.1.0, <= 6.20.0 | - | - |
cpe:2.3:a:lxc:incus:>=_6.1.0,_<=_6.20.0:*:*:*:*:*:*:*
|
| lxc | incus | <= 6.0.5 | - | - |
cpe:2.3:a:lxc:incus:<=_6.0.5:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
参考链接
cve.org
cve.org
cve.org
cve.org
CVSS评分详情
3.1 (cna)
HIGHCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2026-23953 |
2026-01-23 03:20:00 | 2026-01-22 22:00:13 |
| NVD | nvd_CVE-2026-23953 |
2026-01-23 02:00:05 | 2026-01-22 22:00:17 |
| CNNVD | cnnvd_CNNVD-202601-3455 |
2026-01-26 02:10:03 | 2026-01-25 18:11:57 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 注入
- cnnvd_id: 未提取 -> CNNVD-202601-3455
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- data_sources: ['cve'] -> ['cve', 'nvd']