Skip to content
Verified reproduction

CVE-2026-50195: containerd CRI checkpoint import RCE

CVE-2026-50195 is verified against the affected target vulnerability class: RCE This critical reproduction includes runnable sandbox proof, artifacts, and a plain-text agent view under REPRO-2026-00248.

REPRO-2026-00248 RCE Variant found Jul 6, 2026 .txt
Severity CRITICAL
Confidence HIGH
Reproduced in 39m 23s
Tool calls 315
Spend $10.44
$ pruva-verify REPRO-2026-00248
or curl -O https://pruva.dev/api/v1/reproductions/REPRO-2026-00248/artifacts/bundle/repro/reproduction_steps.sh && chmod +x reproduction_steps.sh && ./reproduction_steps.sh
Run in a VM or disposable container. This exploits a real vulnerability.
02 · The vulnerability

containerd before 2.3.2, 2.2.5, and 2.1.9 fails to validate image references in a CRI checkpoint image's configuration. An attacker can craft a checkpoint image that pulls arbitrary images during import, leading to remote code execution on the host. Reproduce: build containerd from a vulnerable version, create a malicious checkpoint image with an attacker-controlled image reference, and use the CRI checkpoint import API to import it. The host will pull and run the attacker image.

03 · Root cause
Variant analysis
04 · Reproduction transcript

The agent's step-by-step process — every tool call, every handoff, the moment the exploit fired. Phases: support triages the advisory · repro reproduces it · vuln_variant confirms the fix blocks it · judge verifies.

Loading session...

05 · Artifacts

Scripts, logs, diffs, and output captured during the reproduction.

bundle/artifact_promotion_manifest.json11.4 KB
bundle/vuln_variant/root_cause_equivalence.json1.6 KB
bundle/repro/reproduction_steps.sh22.3 KB
bundle/repro/rca_report.md8.6 KB
bundle/repro/runtime_manifest.json1.4 KB
bundle/repro/validation_verdict.json0.8 KB
bundle/logs/exploit_evidence.txt0.7 KB
bundle/logs/containerd.log16.4 KB
bundle/logs/attacker_marker.txt0.1 KB
bundle/logs/crictl_ps.txt0.4 KB
bundle/logs/vulnerable_v222_exploit_evidence.txt5.0 KB
bundle/logs/fixed_v225_exploit_evidence.txt4.2 KB
bundle/logs/vulnerable_v222_exploit_stdout.log4.9 KB
bundle/logs/vulnerable_v222_containerd.log17.7 KB
bundle/logs/vulnerable_v222_ctr_images.txt1.7 KB
bundle/logs/vulnerable_v222_crictl_ps.txt0.6 KB
bundle/logs/vulnerable_v222_podlogs.txt0.1 KB
bundle/logs/fixed_v225_exploit_stdout.log4.0 KB
bundle/logs/fixed_v225_containerd.log17.0 KB
bundle/logs/fixed_v225_ctr_images.txt1.4 KB
bundle/logs/fixed_v225_crictl_ps.txt0.4 KB
bundle/logs/source/patch_check.txt3.4 KB
bundle/logs/reproduction_steps.log8.9 KB
bundle/vuln_variant/reproduction_steps.sh21.8 KB
bundle/logs/vuln_variant/digest_variant_summary.txt1.0 KB
bundle/logs/vuln_variant/vulnerable_v222_digest_variant_evidence.txt5.0 KB
bundle/logs/vuln_variant/fixed_v225_digest_variant_evidence.txt4.5 KB
bundle/vuln_variant/variant_manifest.json4.0 KB
bundle/vuln_variant/validation_verdict.json3.0 KB
bundle/vuln_variant/rca_report.md10.1 KB
bundle/vuln_variant/patch_analysis.md6.6 KB
bundle/vuln_variant/runtime_manifest.json0.9 KB
bundle/logs/vuln_variant/reproduction_steps.log8.5 KB