CVE 10 CRITICAL

BoxLite: Permission Bypass in boxlite Allows Modification of Read-Only Files_CVE-2026-46695

June 10, 2026 invoker category_cve

10 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N

Description

Boxlite is a sandbox service that allows users to create lightweight virtual machines (Boxes) and launch OCI containers within them to run untrusted code. Prior to version 0.9.0, Boxlite does not restrict the kernel capabilities available inside the container, malicious code can remount the directory in rw mode, thereby gaining write access to that directory. This allows malicious code to perform arbitrary write operations on directories that should be read-only. This issue has been patched in version 0.9.0.

AI Analysis

Permission bypass vulnerability in Boxlite allows malicious code to modify read-only files by remounting the directory in rw mode.

Basic Information

ID CVE-2026-46695

Source GitHub_M

Published Jun 10, 2026 at 22:20

Affected Product

Vendor boxlite-ai

Product boxlite

Version < 0.9.0

Affected Versions boxlite-ai boxlite < 0.9.0

CWE Classification

CWE-284

AI Assessment

AI Score 10 / 10

AI Severity Critical

Vendor boxlite-ai

Product boxlite

Version < 0.9.0

References

{
    "lastseen": "",
    "description": "Boxlite is a sandbox service that allows users to create lightweight virtual machines (Boxes) and launch OCI containers within them to run untrusted code. Prior to version 0.9.0, Boxlite does not restrict the kernel capabilities available inside the container, malicious code can remount the directory in rw mode, thereby gaining write access to that directory. This allows malicious code to perform arbitrary write operations on directories that should be read-only. This issue has been patched in version 0.9.0.",
    "published": "2026-06-10T22:20:44.589Z",
    "modified": "2026-06-10T22:20:44.589Z",
    "type": "cve",
    "title": "BoxLite: Permission Bypass in boxlite Allows Modification of Read-Only Files",
    "source": "GitHub_M",
    "references": "https://github.com/boxlite-ai/boxlite/security/advisories/GHSA-g6ww-w5j2-r7x3\nhttps://github.com/boxlite-ai/boxlite/pull/454\nhttps://github.com/boxlite-ai/boxlite/releases/tag/v0.9.0",
    "id": "CVE-2026-46695",
    "bulletinFamily": "",
    "cwe": [
        "CWE-284"
    ],
    "cvelist": null,
    "sourceData": "boxlite-ai boxlite < 0.9.0",
    "sourceHref": "",
    "cvss": {
        "score": 10,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "boxlite",
    "version": "< 0.9.0",
    "vendor": "boxlite-ai",
    "ai_description": "Permission bypass vulnerability in Boxlite allows malicious code to modify read-only files by remounting the directory in rw mode.",
    "ai_severity": "Critical",
    "ai_vendor": "boxlite-ai",
    "ai_product": "boxlite",
    "ai_version": "< 0.9.0",
    "ai_score": 10
}

💭 Join the Security Discussion ❌ Cancel Reply