CVE-2026-30892 NONE

CVE-2026-30892: Crun incorrectly parses `crun exec` option `-u`, leading to privilege escalation

Vendor Containers

Product crun

Weakness CWE-269

Published March 25, 2026

Last update March 26, 2026

View on NVD All CVEs

CVSS base score

0.0/10

Attack vector Local

Attack complexity Low

Privileges required None

User interaction None

Confidentiality None

Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N

What the vulnerability does

01Description

crun is an open source OCI Container Runtime fully written in C. In versions 1.19 through 1.26, the `crun exec` option `-u` (`--user`) is incorrectly parsed. The value `1` is interpreted as UID 0 and GID 0 when it should have been UID 1 and GID 0. The process thus runs with higher privileges than expected. Version 1.27 patches the issue.

Key dates

02Disclosure timeline

March 25, 2026 CVE published

March 26, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2026-30892 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/269.html

Related vulnerabilities

CVE-2026-30892: Crun incorrectly parses `crun exec` option `-u`, leading to privilege escalation

01Description

02Disclosure timeline

03References

04Related CVE