Privilege escalation in Containerd
CVE-2026-46680
containerd is an open-source container runtime. In versions prior to 1.7.32, 2.0.9, 2.2.4 and 2.3.1, containers launched with a numeric User directive that cannot be parsed as a 32-bit integer are incorrectly treated as a username, leading…
Vulnerability class: Privilege Escalation
Affected products
- Containerd — versions < 1.7.32, >= 2.0.4, < 2.0.9, >= 2.0.10, < 2.2.4
Weakness classification (CWE)
Public proof-of-concept exploits
References
- security-advisories@github.com (x_refsource_CONFIRM)
Frequently asked questions
- What is CVE-2026-46680?
- CVE-2026-46680 is a vulnerability in Containerd, classified under Improper Privilege Management. Published 2026-07-01.
- Is CVE-2026-46680 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.