Advisory Database
  • Advisories
  • Dependency Scanning
  1. golang
  2. ›
  3. github.com/containers/podman/v4
  4. ›
  5. CVE-2025-9566

CVE-2025-9566: podman kube play symlink traversal vulnerability

September 4, 2025

The podman kube play command can overwrite host files when the kube file contains a ConfigMap or Secret volume mount and the volume already contains a symlink to a host file. This allows a malicious container to write to arbitrary files on the host BUT the attacker only controls the target path not the contents that will be written to the file. The contents are defined in the yaml file by the end user.

References

  • github.com/advisories/GHSA-wp3j-xq48-xpjw
  • github.com/containers/podman
  • github.com/containers/podman/commit/43fbde4e665fe6cee6921868f04b7ccd3de5ad89
  • github.com/containers/podman/security/advisories/GHSA-wp3j-xq48-xpjw
  • nvd.nist.gov/vuln/detail/CVE-2025-9566

Code Behaviors & Features

Detect and mitigate CVE-2025-9566 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →

Affected versions

All versions up to 4.9.5

Solution

Unfortunately, there is no solution available yet.

Impact 8.1 HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Learn more about CVSS

Weakness

  • CWE-61: UNIX Symbolic Link (Symlink) Following

Source file

go/github.com/containers/podman/v4/CVE-2025-9566.yml

Spotted a mistake? Edit the file on GitLab.

  • Site Repo
  • About GitLab
  • Terms
  • Privacy Statement
  • Contact

Page generated Sat, 06 Sep 2025 00:19:57 +0000.