Summary
Two path traversal vulnerabilities in the local block adapter allow authenticated users to read and write files outside their designated storage boundaries.
Details
The local block adapter in pkg/block/local/adapter.go had two path traversal vulnerabilities:
1. Prefix Bypass Vulnerability
The verifyRelPath function used strings.HasPrefix() to verify that requested paths fall within the configured storage directory. This check was insufficient because it validated only the path prefix without requiring a path separator, allowing access to sibling directories with similar names.
Example: If the adapter is configured with base path /data/lakefs:
| Path | Expected | Actual |
|---|---|---|
/data/lakefs/valid/file.txt |
Allowed | Allowed |
/data/lakefs_evil/secret.txt |
Blocked | Vulnerable |
/data/lakefs_backup/data.db |
Blocked | Vulnerable |
2. Namespace Escape via Identifier
The adapter verified that resolved paths stayed within the adapter's base path, but did not verify that object identifiers stayed within their designated storage namespace. This allowed attackers to use path traversal sequences in the object identifier to access files in other namespaces.
Example: With base path /data/lakefs and namespace local://repo1/userdata:
| Identifier | Resolved Path | Expected | Actual |
|---|---|---|---|
file.txt |
/data/lakefs/repo1/userdata/file.txt |
Allowed | Allowed |
../secrets/key.txt |
/data/lakefs/repo1/secrets/key.txt |
Blocked | Vulnerable |
../../other-repo/data.txt |
/data/lakefs/other-repo/data.txt |
Blocked | Vulnerable |
This vulnerability allows users with access to one namespace to read and write files in other namespaces within the same lakeFS deployment.
Workarounds
- Configure the storage path with a unique name unlikely to be a prefix of other directories
- Restrict filesystem permissions for the lakeFS process
- Ensure no sensitive data exists in sibling directories
Credit
Discovered via CodeQL static analysis.
Impact
Authenticated lakeFS users can:
- Read and write files in sibling directories that share the same path prefix as the storage directory (vulnerability 1)
- Access files across namespaces by using path traversal in object identifiers (vulnerability 2)
This could allow attackers to:
- Read sensitive data from other repositories/namespaces
- Write malicious files to other namespaces
- Read/write files in adjacent directories outside lakeFS storage
- Potentially escalate privileges if writable directories are used by other services
This vulnerability only affects deployments using the local block adapter. Deployments using S3, GCS, Azure, or other object storage backends are not affected.
Input manipulates file paths to reach files outside the intended directory, such as configuration or credential files. Typical impact: unauthorized file read or write outside the intended directory.
CVE-2026-26187 has a CVSS score of 8.1 (High). The vector is network-reachable, low privileges required, and no user interaction. A CVSS score reflects the worst-case severity of the vulnerability, not your specific exposure. Whether this affects your application depends on whether the vulnerable code is present and reachable in your environment. A fixed version is available (1.77.0); upgrading removes the vulnerable code path.
Affected versions
Security releases
Kodem intelligence
Severity tells you how bad this could be in the worst case. It does not tell you whether you are exposed. Exploitability and impact are functions of runtime truth: whether the vulnerable code is present, reachable, and actually executes in your application. A vulnerable package can sit in your dependency tree and never run.
Kodem, an Intelligent Application Security platform, uses runtime intelligence to reveal which vulnerabilities actually execute in production, so teams prioritize the ones that genuinely matter. Kodem's runtime-powered SCA identifies whether this CVE is reachable in your applications.
Remediation advice
Fixed in version v1.77.0.
The fixes:
- Append a path separator to prefix checks, ensuring paths must be within the storage directory
- Add two-level path validation: verify both that namespace paths stay within the adapter's base path AND that resolved paths stay within their designated namespace
Frequently Asked Questions
- What is CVE-2026-26187? CVE-2026-26187 is a high-severity path traversal vulnerability in github.com/treeverse/lakefs (go), affecting versions <= 1.76.0. It is fixed in 1.77.0. Input manipulates file paths to reach files outside the intended directory, such as configuration or credential files.
- How severe is CVE-2026-26187? CVE-2026-26187 has a CVSS score of 8.1 (High). This score reflects the worst-case severity of the vulnerability, not your specific exposure. Whether it represents real risk in your environment depends on whether the vulnerable code is present and reachable.
- Which versions of github.com/treeverse/lakefs are affected by CVE-2026-26187? github.com/treeverse/lakefs (go) versions <= 1.76.0 is affected.
- Is there a fix for CVE-2026-26187? Yes. CVE-2026-26187 is fixed in 1.77.0. Upgrade to this version or later.
- Is CVE-2026-26187 exploitable, and should I be worried? Whether CVE-2026-26187 is exploitable in your environment depends on whether the vulnerable code is present and reachable. A CVSS score is a worst-case rating; it does not account for your specific deployment, configuration, or usage patterns. Kodem, an Intelligent Application Security platform, uses runtime intelligence to show which vulnerabilities actually execute in production, so you can focus on the ones that represent real risk. Get a demo
- What actually determines whether CVE-2026-26187 is exploitable, and how bad it is? Exploitability and impact are not fixed properties of a CVE. They depend on runtime truth: whether the vulnerable code is present, reachable, and actually executes in your application. A high CVSS score on a dependency that never runs is not the same as real risk. Kodem, an Intelligent Application Security platform, uses runtime intelligence to reveal which vulnerabilities actually execute in production, so teams prioritize the ones that genuinely matter.
- How do I fix CVE-2026-26187? Upgrade
github.com/treeverse/lakefsto 1.77.0 or later.