CVE-2026-29064HIGH 8.2EPSS p12.4%

CVE-2026-29064CVE-2026-29064

Description

Zarf is an Airgap Native Packager Manager for Kubernetes. From version 0.54.0 to before version 0.73.1, a path traversal vulnerability in archive extraction allows a specifically crafted Zarf package to create symlinks pointing outside the destination directory, enabling arbitrary file read or write on the system processing the package. This issue has been patched in version 0.73.1.

Scoring

CVSS 3.18.2 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
EPSS0.22% probability of exploitation · percentile 12.4% · 2026-06-19T12:03:05Z
Published2026-03-06
Last modified2026-03-11

Underlying weaknesses· 1

CWE-22

References

  1. https://github.com/zarf-dev/zarf/releases/tag/v0.73.1
  2. https://github.com/zarf-dev/zarf/security/advisories/GHSA-hcm4-6hpj-vghm

1

TypeTargetConfidenceTier
WeaknessImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal')cwe-220%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-7774
CVE
CVE-2025-69874
CVE
CVE-2025-54386
CVE
CVE-2026-42275
CVE
CVE-2026-27976
CVE
CVE-2026-10732
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.