CVE-2026-46695
Aliases:RUSTSEC-2026-0147GHSA-g6ww-w5j2-r7x3
Deferred
Published: 10 Jun 2026, 22:20
Last modified:11 Jun 2026, 12:38
Vulnerability Summary
Overall Risk (default)
high
70/100 CVSS Score
10 CRITICAL
v3.1 (cve.org)
EPSS Score
0.03% LOW
0% probability
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
10 Jun 2026, 22:20
Published
Vulnerability first disclosed
11 Jun 2026, 12:38
Last Modified
Vulnerability information updated
Description
Boxlite is a sandbox service that allows users to create lightweight virtual machines (Boxes) and launch OCI containers within them to run untrusted code. Prior to version 0.9.0, Boxlite does not restrict the kernel capabilities available inside the container, malicious code can remount the directory in rw mode, thereby gaining write access to that directory. This allows malicious code to perform arbitrary write operations on directories that should be read-only. This issue has been patched in version 0.9.0.
CVSS Metrics
- v3.1•CRITICAL•Score: 10CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
EPSS Trends
Current EPSS score: 0.03%• Percentile: 9%
Techniques & Countermeasures
- CWE-284•Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
Affected Systems
- boxlite-ai•boxlite
< 0.9.0
- Crates.Io•boxlite
≥ 0.0.0-0, < 0.9.0 | < 0.9.0
- Crates.Io•boxlite-cli
< 0.9.0
- github.com/boxlite-ai/boxlite/sdks•go
< 0.9.0
- Npm•@boxlite-ai/boxlite
< 0.9.0
- PyPI•boxlite
< 0.9.0
References (7)
- https://crates.io/crates/boxlite
- https://rustsec.org/advisories/RUSTSEC-2026-0147.html
- https://github.com/boxlite-ai/boxlite/security/advisories/GHSA-g6ww-w5j2-r7x3
- https://github.com/boxlite-ai/boxlite/pull/454
- https://github.com/boxlite-ai/boxlite
- https://github.com/boxlite-ai/boxlite/releases/tag/v0.9.0
- https://nvd.nist.gov/vuln/detail/CVE-2026-46695