CVE-2026-46695

Source
https://cve.org/CVERecord?id=CVE-2026-46695
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46695.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-46695
Aliases
Published
2026-06-10T22:20:44.589Z
Modified
2026-07-08T08:14:50.900754426Z
Severity
  • 10.0 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N CVSS Calculator
Summary
BoxLite: Permission Bypass in boxlite Allows Modification of Read-Only Files
Details

Boxlite is a sandbox service that allows users to create lightweight virtual machines (Boxes) and launch OCI containers within them to run untrusted code. Prior to version 0.9.0, Boxlite does not restrict the kernel capabilities available inside the container, malicious code can remount the directory in rw mode, thereby gaining write access to that directory. This allows malicious code to perform arbitrary write operations on directories that should be read-only. This issue has been patched in version 0.9.0.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46695.json",
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-284"
    ]
}
References

Affected packages

Git / github.com/boxlite-ai/boxlite

Affected ranges

Type
GIT
Repo
https://github.com/boxlite-ai/boxlite
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": [
        "AFFECTED_FIELD",
        "REFERENCES"
    ],
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "0.9.0"
        }
    ]
}

Affected versions

sdks/go/v0.*
sdks/go/v0.7.5
sdks/go/v0.8.0
sdks/go/v0.8.1
sdks/go/v0.8.2
v0.*
v0.2.1
v0.2.2
v0.2.3
v0.3.0
v0.3.2
v0.4.0-dev0
v0.4.1
v0.4.2
v0.4.3
v0.4.4
v0.4.5
v0.5.0
v0.5.1
v0.5.10
v0.5.11
v0.5.12
v0.5.13
v0.5.14
v0.5.2
v0.5.3
v0.5.4
v0.5.5
v0.5.6
v0.5.7
v0.5.8
v0.5.9
v0.6.0
v0.7.0
v0.7.3
v0.7.4
v0.7.5
v0.8.2

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-46695.json"