PT-2026-38918 · Apache · Cloudstack

Reza

Published

2026-05-08

Updated

2026-05-11

CVE-2026-25077

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Apache CloudStack versions prior to 4.20.3.0 Apache CloudStack versions prior to 4.22.0.1

Description Account users can register templates for direct download to primary storage when deploying instances using the KVM hypervisor. Due to missing file name sanitization, an attacker can register malicious templates to execute arbitrary code on KVM hosts. This may lead to the compromise of resource integrity and confidentiality, data loss, denial of service, and loss of availability of the KVM-based infrastructure managed by CloudStack.

Recommendations Upgrade to version 4.20.3.0 or later. Upgrade to version 4.22.0.1 or later.

Fix

DoS

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2026-25077

Affected Products

Cloudstack

PT-2026-38918 · Apache · Cloudstack

CVE-2026-25077

Weakness Enumeration

Related Identifiers

Affected Products

References · 8