CVE-2026-34078
published 2026-04-07CVE-2026-34078: Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can…
PriorityP268critical10CVSS 3.1
AVNACLPRNUINSCCHIHAH
EPSS
1.68%
74.0th percentile
Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at arbitrary paths. Flatpak run mounts the resolved host path in the sandbox. This gives apps access to all host files and can be used as a primitive to gain code execution in the host context. This vulnerability is fixed in 1.16.4.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | flatpak | < flatpak 1.16.4-1 (sid) | flatpak 1.16.4-1 (sid) |
| flatpak | flatpak | < 1.16.4 | 1.16.4 |
| flatpak | flatpak | <= 1.16.3 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →The Flatpak portal accepts paths in sandbox-expose options that are app-controlled symlinks; monitor for symlink-based path traversal attempts in Flatpak portal sandbox-expose option handling, where resolved host paths outside the expected sandbox boundary are mounted into the sandbox. ↗
- →Detect exploitation by monitoring for Flatpak sandbox processes gaining read/write access to arbitrary host filesystem paths (outside their expected sandbox root), which would indicate successful symlink-based sandbox escape. ↗
- →Flag Flatpak installations running versions prior to 1.16.4 as vulnerable; patch to 1.16.4 or later (e.g., flatpak-1.16.6-1.fc42/fc43 for Fedora, 1.16.4-1 for Debian sid). ↗
- ·The vulnerability is exploitable locally by a malicious sandboxed Flatpak application; no network-based attack vector is present. Scope is local. ↗
- ·Red Hat states no mitigation meeting their criteria is currently available for affected RHEL packages (7, 8, 9, 10); patching to 1.16.4+ is the only fix. ↗
- ·Debian bookworm, bullseye, forky, and trixie remain open/unpatched as of the tracker snapshot; only sid is resolved with 1.16.4-1. ↗
CVSS provenance
nvdv3.110.0CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
nvdv4.09.3CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
osv9.3CRITICAL
vendor_debian9.3CRITICAL
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options
vendor_redhat·2026-04-07·CVSS 9.3
CVE-2026-34078 [CRITICAL] CWE-59 flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options
flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options
Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at arbitrary paths. Flatpak run mounts the resolved host path in the sandbox. This gives apps access to all host files and can be used as a primitive to gain code execution in the host context. This vulnerability is fixed in 1.16.4.
A flaw was found in Flatpak, a Linux application sandboxing and distribution framework. A malicious application could exploit this by using specially crafted symlinks within the sandbox-expose options of the Flatpak portal. This allows the application to access arbitrary host fi
Debian
CVE-2026-34078: flatpak - Flatpak is a Linux application sandboxing and distribution framework. Prior to 1...
vendor_debian·2026·CVSS 9.3
CVE-2026-34078 [CRITICAL] CVE-2026-34078: flatpak - Flatpak is a Linux application sandboxing and distribution framework. Prior to 1...
Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at arbitrary paths. Flatpak run mounts the resolved host path in the sandbox. This gives apps access to all host files and can be used as a primitive to gain code execution in the host context. This vulnerability is fixed in 1.16.4.
Scope: local
bookworm: open
bullseye: open
forky: open
sid: resolved (fixed in 1.16.4-1)
trixie: open
OSV
CVE-2026-34078: Flatpak is a Linux application sandboxing and distribution framework
osv·2026-04-07·CVSS 9.3
CVE-2026-34078 [CRITICAL] CVE-2026-34078: Flatpak is a Linux application sandboxing and distribution framework
Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at arbitrary paths. Flatpak run mounts the resolved host path in the sandbox. This gives apps access to all host files and can be used as a primitive to gain code execution in the host context. This vulnerability is fixed in 1.16.4.
No detection rules found.
No public exploits indexed.
Hackernews
⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More
blogs_hackernews·2026-04-20
CVE-2026-20184 ⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More
Home
Threat Intelligence
Vulnerabilities
Cyber Attacks
Webinars
Expert Insights
Awards
Webinars
Awards
Free eBooks
About THN
Jobs
Advertise with us
## ⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More
Monday’s recap shows the same pattern in different places. A third-party tool becomes a way in, then leads to internal access. A trusted download path is briefly swapped to deliver malware. Browser extensions act normally while pulling data and running code. Even update channels are used to push payloads. It’s not breaking systems—it’s bending trust.
There’s also a shift in how attacks run. Slower check-ins, multi-stage payloads, andmore code kept in memory. Attackers lean on real tools and normal workflows instead of custom builds. Some cas
Hackernews
⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More
blogs_hackernews·2026-04-13·CVSS 8.6
[HIGH] ⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More
Home
Threat Intelligence
Vulnerabilities
Cyber Attacks
Webinars
Expert Insights
Awards
Webinars
Awards
Free eBooks
About THN
Jobs
Advertise with us
## ⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More
Monday is back, and the weekend’s backlog of chaos is officially hitting the fan. We are tracking a critical zero-day that has been quietly living in your PDFs for months, plus some aggressive state-sponsored meddling in infrastructure that is finally coming to light. It is one of those mornings where the gap between a quiet shift and a full-blown incident response is basically non-existent.
The variety this week is particularly nasty. We have AI models being turned into autonomous exploit engines, North Korean groups playing the long game
Wiz
CVE-2026-34078 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.3
CVE-2026-34078 [CRITICAL] CVE-2026-34078 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-34078 :
Linux Debian vulnerability analysis and mitigation
Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at arbitrary paths. Flatpak run mounts the resolved host path in the sandbox. This gives apps access to all host files and can be used as a primitive to gain code execution in the host context. This vulnerability is fixed in 1.16.4.
Source : NVD
## 9.3
Score
Published April 7, 2026
Severity CRITICAL
CNA Score 9.3
Affected Technologies
Linux Debian
Linux Red Hat
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 36
Exploitati
Bugzilla
CVE-2026-34078 flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options [fedora-42]
bugzilla·2026-04-08·CVSS 9.3
CVE-2026-34078 [CRITICAL] CVE-2026-34078 flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options [fedora-42]
CVE-2026-34078 flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options [fedora-42]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
FEDORA-2026-2a3e305ac4 (flatpak-1.16.6-1.fc42) has been submitted as an update to Fedora 42.
https://bodhi.fedoraproject.org/updates/FEDORA-2026-2a3e305ac4
Bugzilla
CVE-2026-34078 flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options [fedora-43]
bugzilla·2026-04-08·CVSS 9.3
CVE-2026-34078 [CRITICAL] CVE-2026-34078 flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options [fedora-43]
CVE-2026-34078 flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options [fedora-43]
Disclaimer: Community trackers are created by Red Hat Product Security team on a best effort basis. Package maintainers are required to ascertain if the flaw indeed affects their package, before starting the update process.
Discussion:
FEDORA-2026-5286084b44 (flatpak-1.16.6-1.fc43) has been submitted as an update to Fedora 43.
https://bodhi.fedoraproject.org/updates/FEDORA-2026-5286084b44
Bugzilla
CVE-2026-34078 flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options
bugzilla·2026-04-07·CVSS 9.3
CVE-2026-34078 [CRITICAL] CVE-2026-34078 flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options
CVE-2026-34078 flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options
Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at arbitrary paths. Flatpak run mounts the resolved host path in the sandbox. This gives apps access to all host files and can be used as a primitive to gain code execution in the host context. This vulnerability is fixed in 1.16.4.
https://github.com/flatpak/flatpak/security/advisories/GHSA-cc2q-qc34-jprghttp://www.openwall.com/lists/oss-security/2026/04/09/8http://www.openwall.com/lists/oss-security/2026/04/10/14https://access.redhat.com/errata/RHSA-2026:21755https://access.redhat.com/errata/RHSA-2026:21756https://access.redhat.com/errata/RHSA-2026:21757https://access.redhat.com/errata/RHSA-2026:23417https://access.redhat.com/errata/RHSA-2026:23418https://access.redhat.com/errata/RHSA-2026:23419https://access.redhat.com/errata/RHSA-2026:23420https://access.redhat.com/errata/RHSA-2026:25068https://access.redhat.com/errata/RHSA-2026:25381https://access.redhat.com/errata/RHSA-2026:30901https://access.redhat.com/security/cve/CVE-2026-34078https://bugzilla.redhat.com/show_bug.cgi?id=2456276https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-34078.json
2026-04-07
Published