CVE-2026-44881: Portainer Community Edition Arbitrary File Read via Git Symlink Injection
Background Portainer treats every blob flagged as a symbolic link (mode 0o120000) as an OS symlink during auto‑update cycles, allowing attackers to craft malicious docker‑compose.yml entries that leverage symlink injection to bypass intended security boundaries. Technical Deep Dive The vulnerability stems from how Portainer processes Git repositories
Edgerunner
3 min read
