Skip to main content

InstructLab CVE-2026-6855

| EUVDEUVD-2026-24736 HIGH
Path Traversal (CWE-22)
2026-04-22 redhat GHSA-pqmg-c2j8-fq92
7.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.1 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Red Hat
7.1 MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

Lifecycle Timeline

5
Re-analysis Queued
Apr 22, 2026 - 21:37 vuln.today
cvss_changed
Analysis Generated
Apr 22, 2026 - 13:48 vuln.today
EUVD ID Assigned
Apr 22, 2026 - 13:15 euvd
EUVD-2026-24736
Analysis Generated
Apr 22, 2026 - 13:15 vuln.today
CVE Published
Apr 22, 2026 - 12:29 nvd
HIGH 7.1

DescriptionCVE.org

A flaw was found in InstructLab. A local attacker could exploit a path traversal vulnerability in the chat session handler by manipulating the logs_dir parameter. This allows the attacker to create new directories and write files to arbitrary locations on the system, potentially leading to unauthorized data modification or disclosure.

AnalysisAI

Path traversal in InstructLab's chat session handler enables local authenticated attackers to write files to arbitrary filesystem locations by manipulating the logs_dir parameter. Red Hat Enterprise Linux AI 3 deployments are confirmed affected. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain local authenticated access
Delivery
Invoke InstructLab chat session
Exploit
Inject path traversal sequences into logs_dir parameter
Execution
Write malicious files to arbitrary filesystem locations
Impact
Achieve persistence or data exfiltration

Vulnerability AssessmentAI

Exploitation Requires authenticated local system access with low-level user privileges on systems running Red Hat Enterprise Linux AI 3 with InstructLab installed. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment Real-world risk is moderate despite high CVSS score, limited primarily by the local attack vector (AV:L) and requirement for low-privilege authentication (PR:L). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker with low-privilege local access to a RHEL AI 3 system running InstructLab initiates a chat session and intercepts or modifies the logs_dir parameter through environment variables, configuration files, or API calls. By injecting path traversal sequences like ../../etc/cron.d/ or /opt/sensitive_models/, the attacker writes malicious files to critical system locations-planting cron jobs for persistence, overwriting model checkpoints to poison AI outputs, or exfiltrating training data by redirecting logs to attacker-controlled paths. …
Remediation Apply vendor-released security updates for Red Hat Enterprise Linux AI 3 as published in Red Hat Security Advisories. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: inventory all Red Hat Enterprise Linux AI 3 deployments running InstructLab and document current versions. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Vendor StatusVendor

Share

CVE-2026-6855 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy