cvedb.io
CVE-2026-41684
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2026-05-07T14:16:03.350 · Last modified 2026-06-17T10:46:59.997

Summary

Incus is a system container and virtual machine manager. Prior to version 7.0.0, backup.GetInfo() trusts the inline backup/index.yaml config when present and only falls back to parsing the legacy backup/container/backup.yaml file if result.Config == nil. As a result, an archive can carry a valid inline config that passes the initial import preflight while also carrying a malformed legacy backup/container/backup.yaml file that is reparsed later from the restored file system. ParseConfigYamlFile() accepts YAML documents with no container section, and multiple downstream consumers then dereference. Container without checking for nil. Confirmed examples in the instance restore and import flow include backup.UpdateInstanceConfig() and internalImportFromBackup(). An authenticated user with permi

Affected products

linuxcontainers — incus

Does this affect you?

Add your gear to cvedb and we'll alert you only when linuxcontainers ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.