CVE-2025-9566

CVSS v2.0

8.5

High

Vector

AV:N/AC:L/Au:S/C:N/I:C/A:C

Name of the Vulnerable Software and Affected Versions podman versions 4.0.0 through 5.6.1

Description A vulnerability exists in podman where an attacker can use the kube play command to overwrite host files. This occurs when the kube file contains a Secret or a ConfigMap volume mount, and that volume contains a symbolic link to a host file path. In a successful attack, the attacker can control the target file to be overwritten but not the content written into the file.

Recommendations Update podman to version 5.6.1 or later.

Fix

DoS

Path traversal

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-61CWE-22CWE-59

Related Identifiers

ALSA-2025:15900

ALSA-2025:15901

ALSA-2025:15904

ALSA-2025:20909

ALSA-2025:20983

AZL-67046

AZL-67049

BDU:2025-13147

CESA-2025_15904

CVE-2025-9566

GHSA-WP3J-XQ48-XPJW

GO-2025-3935

INFSA-2025_15900

INFSA-2025_15904

INFSA-2025_20909

OPENSUSE-SU-2025:15538-1

OPENSUSE-SU-2025:15845-1

OPENSUSE-SU-2026:20072-1

OPENSUSE-SU-2026:20305-1

RHSA-2025:15900

RHSA-2025:15901

RHSA-2025:15904

RHSA-2025:16480

RHSA-2025:16481

RHSA-2025:16482

RHSA-2025:16488

RHSA-2025:16515

RHSA-2025:20909

RHSA-2025:20983

RHSA-2025_15900

RHSA-2025_15904

RHSA-2025_20909

RHSA-2026:18289

RHSA-2026:18722

RHSA-2026:8211

SUSE-SU-2025:03289-1

SUSE-SU-2025:03534-1

SUSE-SU-2025:03584-1

SUSE-SU-2025:20869-1

SUSE-SU-2025:20899-1

SUSE-SU-2025:3782-1

SUSE-SU-2025_03534-1

SUSE-SU-2025_03584-1

SUSE-SU-2025_3782-1

SUSE-SU-2026:20103-1

SUSE-SU-2026:20116-1

SUSE-SU-2026:20626-1

SUSE-SU-2026:20641-1

Affected Products

Alt Linux

Almalinux

Centos

Debian

Red Hat

Red Os

Rocky Linux

Suse

Podman

CVE-2025-9566

Weakness Enumeration

Related Identifiers

Affected Products

References · 162