216.73.217.64

CVE-2026-11837

· Published 10/06/2026 05:16 · Modified 10/06/2026 19:24

Labels: CVE-2026-11837 2026-06-10CVE-2026-11837CWE-59[email protected]

Essential information

Published
10/06/2026 05:16
Modified
10/06/2026 19:24
Author
Creator
CVSS
7.3 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CVSS metrics

Description

A local privilege escalation vulnerability was found in the ansible.posix authorized_key module. The module's keyfile() function uses os.chown() instead of os.lchown() and opens files without O_NOFOLLOW when managing SSH authorized keys. An unprivileged local user can pre-stage symbolic links in their ~/.ssh directory to redirect file ownership changes to arbitrary system paths when an operator runs the authorized_key task as root, leading to local privilege escalation.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
redhat / ansible.posix cpe:2.3:a:redhat:ansible.posix:*:*:*:*:*:*:*:*

References