CVE-2026-53474

CRITICAL

Migration-planner: second-order sql injection via rvtools upload

Title source: cna

Description

A flaw was found in migration-planner. A remote authenticated attacker could exploit this vulnerability by uploading a specially crafted RVTools .xlsx file. Due to improper input sanitization, malicious SQL embedded within a spreadsheet cell is executed when cluster names are processed. This SQL Injection allows for arbitrary file reading on the system, potentially exposing sensitive information such as Kubernetes service account tokens and other credentials, which could lead to a full compromise of the SaaS environment.

References (3)

Core 3

Core References

Vdb Entry, X_Refsource_Redhat vdb-entry x_refsource_redhat

https://access.redhat.com/security/cve/CVE-2026-53474

Issue Tracking, X_Refsource_Redhat issue-tracking x_refsource_redhat

RHBZ#2487231

https://bugzilla.redhat.com/show_bug.cgi?id=2487231

https://github.com/kubev2v/migration-planner/pull/1231

Scores

CVSS v3 9.6

EPSS 0.0031

EPSS Percentile 22.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-89

Status published

Published Jun 10, 2026

Tracked Since Jun 10, 2026