CYBERHAWK / CVE / CVE-2026-11837

CVE-2026-11837

HIGH CVSS 7.3 other

The flaw

A local privilege escalation vulnerability was found in the ansible.posix authorized_key module. The module's keyfile() function uses os.chown() instead of os.lchown() and opens files without O_NOFOLLOW when managing SSH authorized keys. An

What to do

Review advisory and patch per vendor guidance.

▸ Scan my repo for CVE-2026-11837

References

NVD CISA KEV OSV GitHub Advisory MITRE News search

First seen 2026-06-12 · Tracked by PickBits CyberHawk · Weekly CVE digest

← All CVEs RSS Scheduled audits