CVE-2026-29064 — HIGH (8.2)

Q: How severe is CVE-2026-29064?

CVE-2026-29064 has been rated HIGH with a CVSS base score of 8.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2026-29064?

Check the references section above for vendor advisories and patch information. Affected products include: Lfprojects Zarf.

Vulnerability Description

Zarf is an Airgap Native Packager Manager for Kubernetes. From version 0.54.0 to before version 0.73.1, a path traversal vulnerability in archive extraction allows a specifically crafted Zarf package to create symlinks pointing outside the destination directory, enabling arbitrary file read or write on the system processing the package. This issue has been patched in version 0.73.1.

CVSS Score

8.2

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Lfprojects	Zarf	>= 0.54.0, < 0.73.1

Related Weaknesses (CWE)

CWE-22

References

https://github.com/zarf-dev/zarf/releases/tag/v0.73.1ProductRelease Notes
https://github.com/zarf-dev/zarf/security/advisories/GHSA-hcm4-6hpj-vghmExploitVendor Advisory

FAQ

What is CVE-2026-29064?

CVE-2026-29064 is a vulnerability with a CVSS score of 8.2 (HIGH). Zarf is an Airgap Native Packager Manager for Kubernetes. From version 0.54.0 to before version 0.73.1, a path traversal vulnerability in archive extraction allows a specifically crafted Zarf package ...

How severe is CVE-2026-29064?

CVE-2026-29064 has been rated HIGH with a CVSS base score of 8.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-29064?

Check the references section above for vendor advisories and patch information. Affected products include: Lfprojects Zarf.