Signal

Critical Incus vulnerabilities allow arbitrary file access and command execution

Evidence first: scan the strongest sources, then decide whether to go deeper.

Published 2026-06-26 18:31 UTCUpdated 2026-06-26 18:33 UTC

github

cveexploitssecurity_toolingincident_response

Trend in the last 24h

Current brief openSource links open

This current signal is open on the public brief with summary, metadata, source links, and full evidence. Pro adds compare-over-time, alerts, exports, and workflow.

Back Evidence (3)Get the free brief by email Start free trial

No card needed for the free brief.

Evidence trail (top sources)

top sources (1 domains)

1 top source shown

Incus has a restricted project bypass leading to arbitrary command execution

github_advisories · github.com · 2026-06-26 18:33 UTC

limited source diversity in top sources

View all evidence

Overview

Three critical security vulnerabilities have been disclosed in Incus, a container management tool.

Entities

Incus

Score total

0.8

Momentum 24h

Posts

Origins

Source types

Duplicate ratio

Why now

The vulnerabilities were disclosed recently with critical severity ratings.
Active exploitation could lead to widespread host compromises.
Users of Incus need immediate awareness to mitigate risks.

Why it matters

These vulnerabilities allow attackers to compromise host systems via container images.
Incus is used for container management, so these flaws impact container security.
Prompt patching is critical to prevent exploitation and potential breaches.

LLM analysis

Topic mix: lowPromo risk: lowSource quality: high

Recurring claims

Incus has an arbitrary file read and write vulnerability via rootfs/ symlink in malicious image
Incus has an arbitrary file write vulnerability on host via exec-output symlink in crafted image
Incus has a restricted project bypass leading to arbitrary command execution

How sources frame it

Github_advisories: neutral

All evidence

GitHub Security Advisories

github.com · github.com · 2026-06-26 18:31 UTC

Incus has a restricted project bypass leading to arbitrary command execution

github_advisories · github.com · 2026-06-26 18:33 UTC

Incus has an arbitrary file write on host via `exec-output` symlink in crafted image

github_advisories · github.com · 2026-06-26 18:32 UTC

Show filters & breakdown

Posts loaded: 0Publishers: 2Origin domains: 1Duplicates: -

Platform

Publisher

Origin domain

Relevance tier

Duplicates only

Showing 3 / 0

Top publishers (this list)

github_advisories (2)
github.com (1)

Top origin domains (this list)

github.com (3)