Issue with containerd CRI Plugin - CVE-2026-50195, CVE-2026-53488, CVE-2026-53492, CVE-2026-53489, CVE-2026-47262
Bulletin ID: 2026-046-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 06/18/2026 17:30 PM PDT Description: containerd is an open-source container runtime used by Kubernetes via the Container Runtime Interface (CRI) plugin. It underpins AWS managed container services including Amazon Elastic Kubernetes Service (Amazon EKS), Amazon Elastic Container Service (Amazon ECS), AWS Fargate, Bottlerocket, and Amazon Linux. AWS identified five issues in the containerd CRI plugin affecting versions 1.7 through 2.3. - CVE-2026-50195 (GHSA-cvxm-645q-p574) - CRI checkpoint import, local image tag poisoning - CVE-2026-53488 (GHSA-xhf5-7wjv-pqxp) - image-config LABEL -> host-root command exec - CVE-2026-53492 (GHSA-33vj-92qq-66hc) - CDI annotation smuggling during checkpoint restore - CVE-2026-53489 (GHSA-rgh6-rfwx-v388) - arbitrary host file read via symlink in checkpoint restore - CVE-2026-47262 (GHSA-jpcc-p29g-p8mq) - image-triggered runtime DoS Impacted versions: containerd 1.7, 2.0, 2.1, 2.2, 2.3 Please refer to the article below for the most up-to-date and complete information related to this AWS Security Bulletin.
AI Analysis
Technical Summary
AWS identified five security issues in the containerd CRI plugin versions 1.7 through 2.3: CVE-2026-50195 allows image cache poisoning via unvalidated checkpoint image references enabling cross-pod code execution; CVE-2026-53488 enables arbitrary host command execution through unsanitized image LABEL instructions; CVE-2026-53492 permits device and host mount injection by trusting unvalidated CDI annotations; CVE-2026-53489 allows arbitrary host file read via unvalidated symlinked container log paths during checkpoint restore; CVE-2026-47262 causes denial of service by triggering uncontrolled memory consumption from crafted container images. These issues affect containerd runtimes underpinning AWS managed container services and self-managed deployments. Patched versions are available upstream, and AWS is rolling out fixes for managed services.
Potential Impact
The vulnerabilities allow for cross-pod code execution, arbitrary host command execution, device and host mount injection bypassing Kubernetes enforcement, arbitrary host file read, and denial of service through containerd process termination. These impacts can compromise container isolation, lead to unauthorized access to host resources, and disrupt container workloads. The severity of individual issues ranges from medium to high based on CVSS scores provided by AWS (6.5 to 8.8).
Mitigation Recommendations
Patched containerd releases addressing these vulnerabilities are available upstream and should be applied promptly. AWS is deploying patched runtimes across affected managed container service fleets. For self-managed containerd deployments, upgrade to a patched version immediately. As workarounds, disabling the checkpoint/restore feature mitigates CVE-2026-50195, CVE-2026-53489, and CVE-2026-53492; additionally, disabling CDI support mitigates CVE-2026-53492. There are no workarounds for CVE-2026-53488 and CVE-2026-47262 other than upgrading.
Issue with containerd CRI Plugin - CVE-2026-50195, CVE-2026-53488, CVE-2026-53492, CVE-2026-53489, CVE-2026-47262
Description
Bulletin ID: 2026-046-AWS Scope: AWS Content Type: Important (requires attention) Publication Date: 06/18/2026 17:30 PM PDT Description: containerd is an open-source container runtime used by Kubernetes via the Container Runtime Interface (CRI) plugin. It underpins AWS managed container services including Amazon Elastic Kubernetes Service (Amazon EKS), Amazon Elastic Container Service (Amazon ECS), AWS Fargate, Bottlerocket, and Amazon Linux. AWS identified five issues in the containerd CRI plugin affecting versions 1.7 through 2.3. - CVE-2026-50195 (GHSA-cvxm-645q-p574) - CRI checkpoint import, local image tag poisoning - CVE-2026-53488 (GHSA-xhf5-7wjv-pqxp) - image-config LABEL -> host-root command exec - CVE-2026-53492 (GHSA-33vj-92qq-66hc) - CDI annotation smuggling during checkpoint restore - CVE-2026-53489 (GHSA-rgh6-rfwx-v388) - arbitrary host file read via symlink in checkpoint restore - CVE-2026-47262 (GHSA-jpcc-p29g-p8mq) - image-triggered runtime DoS Impacted versions: containerd 1.7, 2.0, 2.1, 2.2, 2.3 Please refer to the article below for the most up-to-date and complete information related to this AWS Security Bulletin.
Affected software
pkg:github/containerd/containerdRun on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
AWS identified five security issues in the containerd CRI plugin versions 1.7 through 2.3: CVE-2026-50195 allows image cache poisoning via unvalidated checkpoint image references enabling cross-pod code execution; CVE-2026-53488 enables arbitrary host command execution through unsanitized image LABEL instructions; CVE-2026-53492 permits device and host mount injection by trusting unvalidated CDI annotations; CVE-2026-53489 allows arbitrary host file read via unvalidated symlinked container log paths during checkpoint restore; CVE-2026-47262 causes denial of service by triggering uncontrolled memory consumption from crafted container images. These issues affect containerd runtimes underpinning AWS managed container services and self-managed deployments. Patched versions are available upstream, and AWS is rolling out fixes for managed services.
Potential Impact
The vulnerabilities allow for cross-pod code execution, arbitrary host command execution, device and host mount injection bypassing Kubernetes enforcement, arbitrary host file read, and denial of service through containerd process termination. These impacts can compromise container isolation, lead to unauthorized access to host resources, and disrupt container workloads. The severity of individual issues ranges from medium to high based on CVSS scores provided by AWS (6.5 to 8.8).
Mitigation Recommendations
Patched containerd releases addressing these vulnerabilities are available upstream and should be applied promptly. AWS is deploying patched runtimes across affected managed container service fleets. For self-managed containerd deployments, upgrade to a patched version immediately. As workarounds, disabling the checkpoint/restore feature mitigates CVE-2026-50195, CVE-2026-53489, and CVE-2026-53492; additionally, disabling CDI support mitigates CVE-2026-53492. There are no workarounds for CVE-2026-53488 and CVE-2026-47262 other than upgrading.
Technical Details
- Article Source
- {"url":"https://aws.amazon.com/security/security-bulletins/rss/2026-046-aws/","fetched":true,"fetchedAt":"2026-06-20T00:05:05.746Z","wordCount":424}
Threat ID: 6a35d932daaa79a87d7037ae
Added to database: 06/20/2026, 00:05:06 UTC
Last enriched: 06/20/2026, 00:05:14 UTC
Last updated: 06/22/2026, 06:37:49 UTC
Views: 68
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.