CVE-2026-23893

Vulnerability

CVE-2026-23893

openCryptoki: openCryptoki: Privilege Escalation or Data Exposure via Symlink Following

ecosystem: redhat:6, redhat:7, redhat:8, redhat:9, redhat:10

A flaw was found in openCryptoki, a PKCS#11 library and tooling for Linux and AIX. A token-group user can exploit a symlink-following vulnerability by planting symbolic links in group-writable token directories. When an administrator runs a PKCS#11 application or administrative tool as root, it may reset ownership or permissions on existing files within these directories. This can lead to privilege escalation or the exposure of sensitive data.

References

secalert@redhat.com: https://access.redhat.com/security/cve/CVE-2026-23893
secalert@redhat.com: https://bugzilla.redhat.com/show_bug.cgi?id=2431909
secalert@redhat.com: https://github.com/opencryptoki/opencryptoki/commit/5e6e4b42f2b1fcc1e4ef1b920e463bfa55da8b45
secalert@redhat.com: https://github.com/opencryptoki/opencryptoki/security/advisories/GHSA-j6c7-mvpx-jx5q
secalert@redhat.com: https://nvd.nist.gov/vuln/detail/CVE-2026-23893
secalert@redhat.com: https://www.cve.org/CVERecord?id=CVE-2026-23893

severityM

Moderate

type: vendor

source: secalert@redhat.com

CVSS3.1

6.8MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L

AV	Local
AC	Low
PR	Low
UI	Required
S	Not Changed
C	High
I	High
A	Low

source: secalert@redhat.com

　CWE

CWE-59

Improper Link Resolution Before File Access ('Link Following')

source: secalert@redhat.com

published: 2026-01-22 00:01:43

modified: 2026-01-28 11:45:00

Detection

redhat:10

CVE-2026-23893

redhat-vex

OR

unfixedAffected

opencryptoki-ccatok

package type: binary

type: version

unfixedAffected

opencryptoki-devel

package type: binary

type: version

unfixedAffected

opencryptoki-ep11tok

package type: binary

type: version

unfixedAffected

opencryptoki-icatok

package type: binary

type: version

unfixedAffected

opencryptoki-icsftok

package type: binary

type: version

unfixedAffected

opencryptoki-libs

package type: binary

type: version

unfixedAffected

opencryptoki-swtok

package type: binary

type: version

unfixedAffected

opencryptoki

package type: source

type: version

tag: rhel-10:e3170b79-f50b-8d7b-bc0c-1f0ad829d11c

redhat:6

CVE-2026-23893

redhat-vex

OR

unfixedFix deferred

opencryptoki-devel

package type: binary

type: version

unfixedFix deferred

opencryptoki-libs

package type: binary

type: version

unfixedFix deferred

opencryptoki

package type: source

type: version

tag: rhel-6-els:1f5ceef7-11bc-9e5b-c1d3-422b0a30f5ab

OR

unfixedFix deferred

opencryptoki-devel

package type: binary

type: version

unfixedFix deferred

opencryptoki-libs

package type: binary

type: version

unfixedFix deferred

opencryptoki

package type: source

type: version

tag: rhel-6-extras-including-unpatched:1f5ceef7-11bc-9e5b-c1d3-422b0a30f5ab

OR

unfixedFix deferred

opencryptoki-devel

package type: binary

type: version

unfixedFix deferred

opencryptoki-libs

package type: binary

type: version

unfixedFix deferred

opencryptoki

package type: source

type: version

tag: rhel-6-including-unpatched:1f5ceef7-11bc-9e5b-c1d3-422b0a30f5ab

OR

unfixedFix deferred

opencryptoki-devel

package type: binary

type: version

unfixedFix deferred

opencryptoki-libs

package type: binary

type: version

unfixedFix deferred

opencryptoki

package type: source

type: version

tag: rhel-6-supplementary:1f5ceef7-11bc-9e5b-c1d3-422b0a30f5ab

redhat:7

CVE-2026-23893

redhat-vex

OR

unfixedFix deferred

opencryptoki-ccatok

package type: binary

type: version

unfixedFix deferred

opencryptoki-devel

package type: binary

type: version

unfixedFix deferred

opencryptoki-ep11tok

package type: binary

type: version

unfixedFix deferred

opencryptoki-icatok

package type: binary

type: version

unfixedFix deferred

opencryptoki-icsftok

package type: binary

type: version

unfixedFix deferred

opencryptoki-libs

package type: binary

type: version

unfixedFix deferred

opencryptoki-swtok

package type: binary

type: version

unfixedFix deferred

opencryptoki-tpmtok

package type: binary

type: version

unfixedFix deferred

opencryptoki

package type: source

type: version

tag: rhel-7-extras-including-unpatched:f01b228a-42f3-3ebd-57c9-f2e5f1b73c60

OR

unfixedFix deferred

opencryptoki-ccatok

package type: binary

type: version

unfixedFix deferred

opencryptoki-devel

package type: binary

type: version

unfixedFix deferred

opencryptoki-ep11tok

package type: binary

type: version

unfixedFix deferred

opencryptoki-icatok

package type: binary

type: version

unfixedFix deferred

opencryptoki-icsftok

package type: binary

type: version

unfixedFix deferred

opencryptoki-libs

package type: binary

type: version

unfixedFix deferred

opencryptoki-swtok

package type: binary

type: version

unfixedFix deferred

opencryptoki-tpmtok

package type: binary

type: version

unfixedFix deferred

opencryptoki

package type: source

type: version

tag: rhel-7-including-unpatched:f01b228a-42f3-3ebd-57c9-f2e5f1b73c60

OR

unfixedFix deferred

opencryptoki-ccatok

package type: binary

type: version

unfixedFix deferred

opencryptoki-devel

package type: binary

type: version

unfixedFix deferred

opencryptoki-ep11tok

package type: binary

type: version

unfixedFix deferred

opencryptoki-icatok

package type: binary

type: version

unfixedFix deferred

opencryptoki-icsftok

package type: binary

type: version

unfixedFix deferred

opencryptoki-libs

package type: binary

type: version

unfixedFix deferred

opencryptoki-swtok

package type: binary

type: version

unfixedFix deferred

opencryptoki-tpmtok

package type: binary

type: version

unfixedFix deferred

opencryptoki

package type: source

type: version

tag: rhel-7-supplementary:f01b228a-42f3-3ebd-57c9-f2e5f1b73c60

redhat:8

CVE-2026-23893

redhat-vex

OR

unfixedFix deferred

opencryptoki

package type: binary

type: version

unfixedFix deferred

opencryptoki-ccatok

package type: binary

type: version

unfixedFix deferred

opencryptoki-devel

package type: binary

type: version

unfixedFix deferred

opencryptoki-ep11tok

package type: binary

type: version

unfixedFix deferred

opencryptoki-icatok

package type: binary

type: version

unfixedFix deferred

opencryptoki-icsftok

package type: binary

type: version

unfixedFix deferred

opencryptoki-libs

package type: binary

type: version

unfixedFix deferred

opencryptoki-swtok

package type: binary

type: version

unfixedFix deferred

opencryptoki-tpmtok

package type: binary

type: version

unfixedFix deferred

opencryptoki

package type: source

type: version

tag: rhel-8-including-unpatched:25a31579-0c8c-4b7f-01f9-d84635c7a1dd

redhat:9

CVE-2026-23893

redhat-vex

OR

unfixedAffected

opencryptoki

package type: binary

type: version

unfixedAffected

opencryptoki-ccatok

package type: binary

type: version

unfixedAffected

opencryptoki-devel

package type: binary

type: version

unfixedAffected

opencryptoki-ep11tok

package type: binary

type: version

unfixedAffected

opencryptoki-icatok

package type: binary

type: version

unfixedAffected

opencryptoki-icsftok

package type: binary

type: version

unfixedAffected

opencryptoki-libs

package type: binary

type: version

unfixedAffected

opencryptoki-swtok

package type: binary

type: version

unfixedAffected

opencryptoki

package type: source

type: version

tag: rhel-9-including-unpatched:4c9fb096-e1a8-b17c-d78b-389d9f6a1f22

Data Sources

RedHat Enterprise Linux CSAF VEX
redhat-vex

FutureVuls|GitHub