Plattform
linux
Komponente
firecracker
Behoben in
1.14.4
1.15.1
CVE-2026-5747 describes an out-of-bounds write vulnerability discovered in the virtio PCI transport component of Amazon Firecracker, a virtualization technology. This flaw could allow a malicious guest user, possessing root privileges within the virtual machine, to potentially crash the Firecracker Virtual Machine Monitor (VMM) process or, under specific conditions, execute arbitrary code on the host system. The vulnerability affects Firecracker versions 1.13.0 through 1.15.1 on x86_64 and aarch64 architectures; an update to version 1.14.4 or later is available to address this issue.
Exploit-Status
EPSS
0.02% (5% Perzentil)
CISA SSVC
Actualice Firecracker a la versión 1.14.4 o posterior, o a la versión 1.15.1 o posterior para mitigar este problema. La vulnerabilidad permite a un usuario con privilegios de root en el entorno de la máquina virtual escribir fuera de los límites, lo que podría provocar un fallo del VMM o, potencialmente, la ejecución de código arbitrario en el host.
Schwachstellenanalysen und kritische Warnungen direkt in deinen Posteingang.
CVE-2026-5747 is a HIGH severity out-of-bounds write vulnerability in Amazon Firecracker Virtual Machine Monitor. It allows a privileged guest user to potentially crash the VMM or execute code on the host under specific conditions.
You are affected if you are running Firecracker versions 1.13.0 through 1.15.1 on x86_64 or aarch64 architectures. Check your current version and compare it to the affected range.
Upgrade to Firecracker version 1.14.4 or later to remediate this vulnerability. This update addresses the out-of-bounds write issue and prevents potential exploitation.
CVSS-Vektor
Lade deine Abhängigkeitsdatei hoch und erfahre sofort, ob dich diese und andere CVEs treffen.