CVE Catalog

CVE-2026-55092

HighCVSS 7.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.29%

21th percentile — higher than 21% of all known CVEs

Summary

Trivy before version 0.71.1 uses the `org.opencontainers.image.title` annotation from the OCI artifact manifest as the destination filename without validation. An attacker who can make Trivy fetch an attacker-controlled artifact can supply a crafted annotation that resolves to a path outside the intended destination, causing Trivy to write the layer content to an arbitrary location on the host filesystem.

Risk Assessment

The risk involves overwriting or placing malicious files in critical system locations, potentially leading to privilege escalation, arbitrary code execution, or permanent system damage.

Recommendation

Immediately update Trivy to version 0.71.1 or later. If an update is not possible, restrict OCI artifact fetching to trusted sources only.

Original NVD description (English source)

Trivy is a security scanner. Prior to 0.71.1, when Trivy downloads an OCI artifact, it uses the org.opencontainers.image.title annotation from the artifact manifest as the destination filename without validation. An attacker who can make Trivy fetch an attacker-controlled artifact can supply a crafted annotation that resolves to a path outside the intended destination, causing Trivy to write the layer content to an arbitrary location on the host filesystem. This vulnerability is fixed in 0.71.1.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS