{"id":"CVE-2026-55686","summary":"Podman: WORKDIR symlink traversal vulnerability","details":"Podman is a tool for managing OCI containers and pods. From 3.0.0 until 5.7.1, running a malicious container image where the WORKDIR path contains a symlink can create a directory or modify ownership on the host filesystem. Modified ownership is less likely to happen as that requires help from an untrusted/malicious process that mutates the host filesystem tree during dereferencing of the WORKDIR path, to trigger a race condition. This vulnerability is fixed in 5.7.1.","aliases":["GHSA-q6r4-3wmg-fwcq","GO-2026-5568"],"modified":"2026-07-08T08:13:46.060435438Z","published":"2026-06-26T16:30:41.345Z","database_specific":{"cna_assigner":"GitHub_M","cwe_ids":["CWE-61"],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/55xxx/CVE-2026-55686.json"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/55xxx/CVE-2026-55686.json"},{"type":"ADVISORY","url":"https://github.com/podman-container-tools/podman/security/advisories/GHSA-q6r4-3wmg-fwcq"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-55686"},{"type":"FIX","url":"https://github.com/podman-container-tools/podman/commit/d18e44e9abb3bf5b7294aa70806e1368fdddfdd0"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/podman-container-tools/podman","events":[{"introduced":"5b2585f5e91ca148f068cefa647c23f8b1ade622"},{"fixed":"f845d14e941889ba4c071f35233d09b29d363c75"},{"fixed":"d18e44e9abb3bf5b7294aa70806e1368fdddfdd0"}],"database_specific":{"source":["CPE_RANGE","REFERENCES"],"cpe":"cpe:2.3:a:podman_project:podman:*:*:*:*:*:*:*:*","extracted_events":[{"introduced":"3.0.0"},{"fixed":"5.7.1"}]}}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-55686.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}]}