Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
3224 articles · 170285 vulns · 37/41 feeds (7d)
← Back to list
7.1
CVE-2026-54369EXPLOITEDPATCHED
red hat · acl

acl < 2.4.0 Symlink Traversal Privilege Escalation via libacl Functions

Description

acl before version 2.4.0 contains a symlink traversal vulnerability in the libacl pathname-based functions acl_get_file(), acl_set_file(), acl_extended_file(), and acl_delete_def_file() that allows local attackers to escalate privileges by replacing any pathname component with a symbolic link. Attackers who control any component of a pathname processed by a privileged caller can redirect ACL read or write operations to arbitrary files or directories, enabling unauthorized manipulation of access control lists and local privilege escalation.

Affected Products

VendorProductVersions
red hatacl0

References

  • https://cgit.git.savannah.nongnu.org/cgit/acl.git/commit/?id=3589787cd589b34bdd9265936e17190b6d3f17d1(patch)
  • https://cgit.git.savannah.nongnu.org/cgit/acl.git/commit/?id=24a227d0ab8576612194f8a56c2314389adc74a5(issue-tracking)
  • https://www.vulncheck.com/advisories/acl-symlink-traversal-privilege-escalation-via-libacl-functions(third-party-advisory)

Related News (3 articles)

Tier A
Microsoft MSRC3d ago
CVE-2026-54369 acl < 2.4.0 Symlink Traversal Privilege Escalation via libacl Functions
→ No new info (linked only)
Tier C
oss-security3d ago
Symlink Traversal Privilege Escalation via getfattr/setfattr, getfacl/setfacl/chacl, libacl
→ No new info (linked only)
Tier C
VulDB3d ago
CVE-2026-54369 | acl up to 2.3.x link following
→ No new info (linked only)
CVSS 3.17.1 NONE
CISA KEV❌ No
Actively exploited✅ Yes
Patch available
2.4.0
CWECWE-59
PublishedJun 29, 2026
Last enriched3d agov3
Trending Score36
Source articles3
Independent3
Info Completeness10/14
Missing: epss, kev, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Related CVEs (5)

NONECVE-2026-14258EXP
Dhcpcd: dhcpcd infinite loop and out-of-bounds read via zero-length ipv6 nd option in router advertisement handling
Trending: 58
HIGHCVE-2026-55628EXP
ImageMagick: Policy Bypass in concatenate operation due to missing checks
Trending: 52
HIGHCVE-2026-12505EXP
Cifs-utils: local privilege escalation via forged cifs.spnego key description in cifs.upcall
Trending: 39
NONECVE-2026-12388EXP
Keycloak-broker: keycloak: privilege escalation to realm administrator via improper authorization in identity provider mapper
Trending: 35
NONECVE-2026-58013EXP
Glib: buffer over-read in glib/giochannel.c via "g_io_channel_read_line_backend"
Trending: 35

Pin to Dashboard

Verification

State: unverified
Confidence: 0%

Vulnerability Timeline

CVE Published
Jun 29, 2026
Discovered by ZDM
Jun 29, 2026
Updated: description, severity, patchAvailable
Jun 29, 2026
Updated: description, affectedVersions, cweIds, exploitAvailable, activelyExploited, patchAvailable
Jun 29, 2026
Actively Exploited
Jul 2, 2026
Exploit Available
Jul 2, 2026
Patch Available
Jul 2, 2026

Version History

v3
Last enriched 3d ago
v3Tier C3d ago

Updated description with detailed technical information, added affected version 2.4.0, and marked exploit availability and active exploitation as true.

descriptionaffectedVersionscweIdsexploitAvailableactivelyExploitedpatchAvailable
via oss-security
v2Tier C3d ago

Updated severity to CRITICAL, changed exploit availability to false, and provided a new description detailing the vulnerability.

descriptionseveritypatchAvailable
via VulDB
v13d ago

Initial creation