CVE-2026-53476 - Vulnerability Details - OpenCVE

A flaw was found in assisted-migration-agent. An unauthenticated attacker, located on the same local area network (LAN), can exploit a path traversal vulnerability. By crafting a specially designed gzipped tarball, the attacker can bypass security checks and write arbitrary files to the system. This could ultimately lead to the execution of unauthorized code on the appliance.

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://access.redhat.com/security/cve/CVE-2026-53476
https://bugzilla.redhat.com/show_bug.cgi?id=2487233
https://github.com/kubev2v/assisted-migration-agent/pull/256

History

Wed, 10 Jun 2026 14:45:00 +0000

Type	Values Removed	Values Added
Description		A flaw was found in assisted-migration-agent. An unauthenticated attacker, located on the same local area network (LAN), can exploit a path traversal vulnerability. By crafting a specially designed gzipped tarball, the attacker can bypass security checks and write arbitrary files to the system. This could ultimately lead to the execution of unauthorized code on the appliance.
Title		Assisted-migration-agent: vddk tarball chained-symlink arbitrary file write
Weaknesses		CWE-59
References		https://access.redhat.com/security/cve/CVE-2026-53476 https://bugzilla.redhat.com/show_bug.cgi?id=2487233 https://github.com/kubev2v/assisted-migration-agent/pull/256
Metrics		cvssV3_1 `{'score': 9.6, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2026-06-10T13:55:44.144Z

Updated: 2026-06-10T14:44:30.838Z

Reserved: 2026-06-09T17:03:29.628Z

Link: CVE-2026-53476

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-06-10T15:16:42.220

Modified: 2026-06-10T15:16:42.220

Link: CVE-2026-53476

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-53476", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "state": "PUBLISHED", "assignerShortName": "redhat", "dateReserved": "2026-06-09T17:03:29.628Z", "datePublished": "2026-06-10T13:55:44.144Z", "dateUpdated": "2026-06-10T14:44:30.838Z"}, "containers": {"cna": {"title": "Assisted-migration-agent: vddk tarball chained-symlink arbitrary file write", "metrics": [{"other": {"content": {"value": "Important", "namespace": "https://access.redhat.com/security/updates/classification/"}, "type": "Red Hat severity rating"}}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.6, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS"}], "descriptions": [{"lang": "en", "value": "A flaw was found in assisted-migration-agent. An unauthenticated attacker, located on the same local area network (LAN), can exploit a path traversal vulnerability. By crafting a specially designed gzipped tarball, the attacker can bypass security checks and write arbitrary files to the system. This could ultimately lead to the execution of unauthorized code on the appliance."}], "affected": [{"versions": [{"status": "affected", "version": "0", "lessThan": "bcae0438ad8386321a300413d71c982a11b7b5b7", "versionType": "git"}], "packageName": "assisted-migration-agent", "collectionURL": "https://github.com/kubev2v/assisted-migration-agent", "defaultStatus": "unaffected"}], "references": [{"url": "https://access.redhat.com/security/cve/CVE-2026-53476", "tags": ["vdb-entry", "x_refsource_REDHAT"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487233", "name": "RHBZ#2487233", "tags": ["issue-tracking", "x_refsource_REDHAT"]}, {"url": "https://github.com/kubev2v/assisted-migration-agent/pull/256"}], "datePublic": "2026-06-07T00:00:00.000Z", "problemTypes": [{"descriptions": [{"cweId": "CWE-59", "description": "Improper Link Resolution Before File Access ('Link Following')", "lang": "en", "type": "CWE"}]}], "x_redhatCweChain": "CWE-59: Improper Link Resolution Before File Access ('Link Following')", "timeline": [{"lang": "en", "time": "2026-06-09T18:35:34.837Z", "value": "Reported to Red Hat."}, {"lang": "en", "time": "2026-06-07T00:00:00.000Z", "value": "Made public."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2026-06-10T13:55:44.144Z"}, "x_generator": {"engine": "cvelib 1.8.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-06-10T14:44:17.152878Z", "id": "CVE-2026-53476", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-06-10T14:44:30.838Z"}}]}}