Description
Podman is a tool for managing OCI containers and pods. Versions 4.8.0 through 5.8.1 contain a command injection vulnerability in the HyperV machine backend in pkg/machine/hyperv/stubber.go, where the VM image path is inserted into a PowerShell double-quoted string without sanitization, allowing $() subexpression injection. Because PowerShell evaluates subexpressions inside double-quoted strings before executing the outer command, an attacker who can control the VM image path through a crafted machine name or image directory can execute arbitrary PowerShell commands with the privileges of the Podman process. On typical Windows installations this means SYSTEM-level code execution, and only Windows is affected as the code is exclusive to the HyperV backend. This issue has been patched in version 5.8.2.
Published: 2026-04-14
Score: 4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Patch Now
AI Analysis

Impact

The vulnerability is a command injection flaw present in the HyperV machine backend of Podman. In versions 4.8.0 through 5.8.1, the VM image path is concatenated directly into a double-quoted PowerShell command without sanitization. An attacker who can influence the VM image path—for example by providing a specially crafted machine name or specifying an image directory—can inject a $() subexpression. PowerShell evaluates that subexpression before executing the outer command, which allows arbitrary PowerShell code to run with the same privileges as the Podman process. On Windows this means potential SYSTEM-level execution.

Affected Systems

The affected product is Podman, the container management tool provided by the containers:podman project. Versions 4.8.0 through 5.8.1 are vulnerable; all other releases are unaffected. The issue is exclusive to the HyperV backend and therefore only affects Windows installations. The vulnerability has been fixed in Podman 5.8.2.

Risk and Exploitability

The CVSS score of 4 indicates a low severity, yet the ability to execute code at the Podman process level turns this into a remote code execution risk. An EPSS score of <1% (approximately 0.00028) shows a low but non‑zero likelihood of exploitation. The vulnerability has not been listed in CISA's KEV catalog. Attackers need to control the VM image path, which can be done if they can supply a machine name or image directory during machine creation, typically via local or remote access to the Podman service. Because the flaw uses PowerShell injection, the attack vector is Windows‑only, and the impact is equivalent to running arbitrary commands with SYSTEM privileges if Podman is elevated.

Generated by OpenCVE AI on April 16, 2026 at 09:12 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Podman to version 5.8.2 or later to remove the injection flaw.
  • Configure Podman to run with the least privileges required; on Windows avoid running it under an elevated or Administrator account if possible.
  • Restrict write access to the directories where machine names and image paths are stored, and validate or sanitize any user‑supplied values before creating machines.

Generated by OpenCVE AI on April 16, 2026 at 09:12 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-hc8w-h2mf-hp59 PowerShell Command Injection in Podman HyperV Machine
History

Thu, 23 Apr 2026 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft
Microsoft windows
Podman Project
Podman Project podman
CPEs cpe:2.3:a:podman_project:podman:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft windows
Podman Project
Podman Project podman
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H'}

 cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H'}

Thu, 16 Apr 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 16 Apr 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-94
References
Metrics threat_severity

None

 cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H'}

threat_severity

Important

Wed, 15 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Containers
Containers podman
Vendors & Products Containers
Containers podman

Tue, 14 Apr 2026 23:00:00 +0000

Type Values Removed Values Added
Description Podman is a tool for managing OCI containers and pods. Versions 4.8.0 through 5.8.1 contain a command injection vulnerability in the HyperV machine backend in pkg/machine/hyperv/stubber.go, where the VM image path is inserted into a PowerShell double-quoted string without sanitization, allowing $() subexpression injection. Because PowerShell evaluates subexpressions inside double-quoted strings before executing the outer command, an attacker who can control the VM image path through a crafted machine name or image directory can execute arbitrary PowerShell commands with the privileges of the Podman process. On typical Windows installations this means SYSTEM-level code execution, and only Windows is affected as the code is exclusive to the HyperV backend. This issue has been patched in version 5.8.2.
Title PowerShell Command Injection in Podman HyperV Machine
Weaknesses CWE-78
References
Metrics cvssV4_0

{'score': 4, 'vector': 'CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U'}

Subscriptions

Containers Podman
Microsoft Windows
Podman Project Podman
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-04-16T13:57:28.317Z

Reserved: 2026-03-19T17:02:34.171Z

Link: CVE-2026-33414

cve-icon Vulnrichment

Updated: 2026-04-16T13:57:11.596Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-14T23:16:27.987

Modified: 2026-04-23T17:49:13.107

Link: CVE-2026-33414

cve-icon Redhat

Severity : Important

Publid Date: 2026-04-14T22:42:19Z

Links: CVE-2026-33414 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-04-16T09:15:30Z

Weaknesses