In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.
CVE-2026-40226 is a vulnerability in systemd's nspawn component versions 233 through 259, where an escape-to-host action can occur via a crafted optional configuration file. This vulnerability affects Microsoft products including Azure Linux versions 2. 0 and 3. 0. No CVSS score or patch information is currently available. There are no known exploits in the wild at this time.
AI Analysis
Technical Summary
The vulnerability identified as CVE-2026-40226 affects the nspawn container manager in systemd versions 233 through 259 prior to version 260. It allows an attacker to perform an escape-to-host action by leveraging a specially crafted optional configuration file. This could potentially allow code or commands to break out of the container environment and execute on the host system. The affected products include Microsoft Azure Linux distributions 2.0 and 3.0. No official patch or remediation details have been provided in the available data.
Potential Impact
If exploited, this vulnerability could allow an attacker with access to the container environment to escape to the host system, potentially leading to unauthorized host-level code execution or control. However, no known exploits are currently reported in the wild, and the extent of impact depends on the attacker's ability to supply a crafted configuration file.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no patch or official fix information is available, users should monitor Microsoft Security Response Center advisories for updates. Until a fix is available, restricting access to container configuration files and limiting untrusted user access to container environments may reduce risk.
In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.
Description
CVE-2026-40226 is a vulnerability in systemd's nspawn component versions 233 through 259, where an escape-to-host action can occur via a crafted optional configuration file. This vulnerability affects Microsoft products including Azure Linux versions 2. 0 and 3. 0. No CVSS score or patch information is currently available. There are no known exploits in the wild at this time.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability identified as CVE-2026-40226 affects the nspawn container manager in systemd versions 233 through 259 prior to version 260. It allows an attacker to perform an escape-to-host action by leveraging a specially crafted optional configuration file. This could potentially allow code or commands to break out of the container environment and execute on the host system. The affected products include Microsoft Azure Linux distributions 2.0 and 3.0. No official patch or remediation details have been provided in the available data.
Potential Impact
If exploited, this vulnerability could allow an attacker with access to the container environment to escape to the host system, potentially leading to unauthorized host-level code execution or control. However, no known exploits are currently reported in the wild, and the extent of impact depends on the attacker's ability to supply a crafted configuration file.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no patch or official fix information is available, users should monitor Microsoft Security Response Center advisories for updates. Until a fix is available, restricting access to container configuration files and limiting untrusted user access to container environments may reduce risk.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_vex
- Csaf Version
- 2.0
- Publisher
- Microsoft Security Response Center
- Advisory Id
- msrc_CVE-2026-40226
- Cve Count
- 1
- Additional Cves
- []
- Cvss Version
- null
Threat ID: 6a175eefe29bf47b50ede66f
Added to database: 5/27/2026, 9:15:27 PM
Last enriched: 5/27/2026, 9:28:54 PM
Last updated: 5/27/2026, 10:18:56 PM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.