VDB
CVE-2026-24834
CVE-2026-24834
PUBLISHED
CVSS 9.399999618530273 CRITICAL
Kata Container to Guest micro VM privilege escalation
EPSS 0.01% · 0.9th percentile
Risk Scores
CVSS 3.1
9.399999618530273
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS Score
0.01%
0.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| katacontainers | kata_containers | 0, 0 |
| kata-containers | kata-containers | < 3.27.0, < 3.27.0 |
| github.com | kata-containers/kata-containers/src/runtime | 0, 0 |
Timeline
- Feb 19, 2026 CVE Published
- Feb 19, 2026 PoC Published
- Feb 19, 2026 PoC Published
- Feb 19, 2026 PoC Published
- Feb 20, 2026 EPSS Score
- Feb 20, 2026 PoC Published
- Feb 22, 2026 EPSS Score
- Feb 23, 2026 EPSS Score
- Feb 23, 2026 PoC Published
- Feb 25, 2026 EPSS Score
- Feb 27, 2026 EPSS Score
- Feb 28, 2026 EPSS Score
References
- https://github.com/kata-containers/kata-containers/security/advisories/GHSA-wwj6-vghv-5p64 url
- https://github.com/kata-containers/kata-containers/commit/6a672503973bf7c687053e459bfff8a9652e16bf url
- https://github.com/kata-containers/kata-containers/releases/tag/3.27.0 url
- https://nvd.nist.gov/vuln/detail/CVE-2026-24834 advisory
- https://github.com/kata-containers/kata-containers package