CVE-2026-33414 | containers podman up to 5.8.1 VM Image Parser stubber.go os command injection (GHSA-hc8w-h2mf-hp59)

A vulnerability was found in containers podman up to 5.8.1 and classified as critical. Impacted is an unknown function of the file pkg/machine/hyperv/stubber.go of the component VM Image Parser. The manipulation results in os command injection.

This vulnerability was named CVE-2026-33414. The attack needs to be approached locally. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More