Description
mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.1, the mise HTTP backend builds its install symlink destination from the raw resolved version string for non-latest versions. Normal tool install paths use the sanitized version pathname, but the HTTP backend's symlink path uses the raw value. On Unix-like systems, if that version is an absolute path, PathBuf::join discards the intended mise installs root. A repository-controlled .tool-versions file can therefore make mise install create a symlink outside the mise install tree. With bin_path, the same issue can place an executable symlink under an attacker-selected absolute prefix, such as a developer-tool prefix that is later added to PATH. This vulnerability is fixed in 2026.6.1.
Published: 2026-06-26
Score: 5.5 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability lies in mise’s HTTP backend, which builds the symlink destination for installed tools using the raw resolved version string for non‑latest releases. Because this raw value can be an absolute path, the backend may create symlinks outside the intended installation tree. The flaw enables an attacker to place executable symlinks in arbitrary locations if they control a repository’s .tool-versions file or the bin_path configuration. The weakness is a classic path traversal (CWE‑22) that can lead to unauthorized file system modifications or unintended code execution by spoiling environment paths. The CVSS score of 5.5 reflects moderate risk for local systems.

Affected Systems

All installations of the jdx open-source tool manager 'mise', specifically any deployment running a version earlier than 2026.6.1. The issue impacts versions that use the HTTP backend for tool installation. Users of the latest release (2026.6.1 or later) are no longer affected.

Risk and Exploitability

The CVSS score of 5.5 indicates a medium severity vulnerability when it comes to privilege level and affected scope. No EPSS score is available, so the exploitation probability is unknown at this time, and it is not listed in the CISA KEV catalog. The likely attack vector would require local compromise or control over a repository from which mise downloads the .tool-versions file; from there, an attacker could craft absolute path strings that force symlink creation outside the installation directory. The resulting arbitrary symlink could point to an attacker‑controlled executable that would run when added to the user’s PATH, enabling privilege escalation or malicious code execution.

Generated by OpenCVE AI on June 26, 2026 at 19:24 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade mise to version 2026.6.1 to apply the fix that sanitizes the symlink destination.
  • Ensure that any .tool-versions file or bin_path configuration does not contain absolute path strings; use relative paths or curated repositories only.
  • Limit or audit the PATH environment variable so that unexpected executable directories created by symlinks are not invoked; consider isolating tool installation paths within a controlled environment.

Generated by OpenCVE AI on June 26, 2026 at 19:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-f94h-j2qg-fxw3 mise HTTP backend uses raw version path for install symlink destination
History

Fri, 26 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Fri, 26 Jun 2026 17:30:00 +0000

Type Values Removed Values Added
Description mise manages dev tools like node, python, cmake, and terraform. Prior to 2026.6.1, the mise HTTP backend builds its install symlink destination from the raw resolved version string for non-latest versions. Normal tool install paths use the sanitized version pathname, but the HTTP backend's symlink path uses the raw value. On Unix-like systems, if that version is an absolute path, PathBuf::join discards the intended mise installs root. A repository-controlled .tool-versions file can therefore make mise install create a symlink outside the mise install tree. With bin_path, the same issue can place an executable symlink under an attacker-selected absolute prefix, such as a developer-tool prefix that is later added to PATH. This vulnerability is fixed in 2026.6.1.
Title mise HTTP backend uses raw version path for install symlink destination
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-26T17:58:21.233Z

Reserved: 2026-06-15T19:04:14.456Z

Link: CVE-2026-54557

cve-icon Vulnrichment

Updated: 2026-06-26T17:57:23.790Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T19:30:04Z

Weaknesses
  • CWE-22

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')