CVE-2026-49238

Source
https://cve.org/CVERecord?id=CVE-2026-49238
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-49238.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-49238
Aliases
  • GHSA-rhp2-23c4-r34w
Published
2026-05-28T13:22:25.529Z
Modified
2026-07-08T08:13:55.194877558Z
Severity
  • 8.4 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N CVSS Calculator
Summary
SFTP Server VM Escape in Canonical Multipass
Details

An issue was discovered in Canonical Multipass before version 1.16.3. The host-side SFTP server component (sshfsserver), which executes with root privileges on the host, contains a path containment bypass vulnerability within its validatepath function in src/sshfsmount/sftpserver.cpp. The function performs a plain string prefix comparison on requested paths without path separator validation or dot-dot (..) normalization. A local attacker with root privileges inside a guest virtual machine can bypass the FUSE layer by injecting raw SFTP frames (such as an SSHFXPOPEN request) directly into the sshfs_server process stdin/stdout pipes via procfs. By supplying a path containing directory traversal sequences that match the allowed mount prefix, the attacker can force the host-side root process to resolve the traversal and open files outside the designated mount boundary. This allows a guest-side user to read arbitrary files on the host filesystem, resulting in a virtual machine escape.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/49xxx/CVE-2026-49238.json",
    "cna_assigner": "canonical",
    "cwe_ids": [
        "CWE-22"
    ]
}
References

Affected packages

Git / github.com/canonical/multipass

Affected ranges

Type
GIT
Repo
https://github.com/canonical/multipass
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": [
        "AFFECTED_FIELD",
        "CPE_RANGE"
    ],
    "cpe": "cpe:2.3:a:canonical:multipass:*:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.16.3"
        }
    ]
}

Affected versions

2017.*
2017.2.1
2017.2.3
2018.*
2018.10.1
2018.11.1-pre1
2018.11.1-pre2
2018.11.1-pre3
2018.12.1-rc1
2018.4.1
2018.4.2
v0.*
v0.10.0-dev
v0.10.0-rc
v0.10.1-rc
v0.11.0-dev
v0.5
v0.6.0-pre1
v0.6.0-rc
v0.7.0-dev
v0.7.0-dev2
v0.7.0-rc
v0.8.0
v0.8.0-dev
v0.8.0-rc
v0.9.0-dev
v0.9.0-rc
v1.*
v1.1.0-dev
v1.1.0-rc
v1.10.0-dev
v1.10.0-rc
v1.11.0-dev
v1.11.0-rc
v1.12.0-dev
v1.12.0-rc
v1.13.0-dev
v1.13.0-rc
v1.14.0-dev
v1.14.0-rc
v1.14.0-rc1
v1.15.0-dev
v1.15.0-rc1
v1.16.0
v1.16.0-dev
v1.16.0-rc1
v1.16.0-rc2
v1.16.0-rc3
v1.16.0-rc4
v1.16.0-rc5
v1.16.1
v1.16.1-rc1
v1.16.1-rc2
v1.16.1-rc3
v1.16.2
v1.16.2-rc1
v1.16.2-rc2
v1.16.2-rc3
v1.16.3-rc1
v1.2.0
v1.2.0-dev
v1.2.0-rc
v1.2.1
v1.3.0-dev
v1.3.0-rc
v1.4.0-dev
v1.4.0-rc
v1.5.0-dev
v1.5.0-rc
v1.6.0-dev
v1.6.0-rc
v1.7.0-dev
v1.7.0-rc
v1.8.0-dev
v1.8.0-rc
v1.9.0-dev
v1.9.0-rc

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-49238.json"