CVE-2026-1386

EUVD-2026-4536

23.01.2026, 21:15

A UNIX symbolic link following issue in the jailer component in Firecracker version  v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at jailer startup, if the jailer is executed with root privileges. 

To mitigate this issue, users should upgrade to version v1.13.2 or 1.14.1 or above.

Symlink

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
AMZN	CNA	6 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Affected Products (NVD)

Vendor	Product	Version
amazon	firecracker	𝑥 < 1.13.2
amazon	firecracker	1.14.0
amazon	firecracker	1.14.0:dev

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-61 - UNIX Symbolic Link (Symlink) Following
The software, when opening a file or directory, does not sufficiently account for when the file is a symbolic link that resolves to a target outside of the intended control sphere. This could allow an attacker to cause the software to operate on unauthorized files.

References

https://aws.amazon.com/security/security-bulletins/2026-003-AWS/

https://github.com/firecracker-microvm/firecracker/releases/tag/v1.13.2

https://github.com/firecracker-microvm/firecracker/releases/tag/v1.14.1

https://github.com/firecracker-microvm/firecracker/security/advisories/GHSA-36j2-f825-qvgc