CVE-2026-34354
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-34354
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Akamai Guardicore Platform Agent (GPA) and Zero Trust Client on Linux and macOS allow TOCTOU-based local privilege escalation. The GPA service creates an IPC socket in the world-writable /tmp directory. It accepts unauthenticated IPC control messages. This enables a TOCTOU vulnerability in the HandleSaveLogs() function of the GPA service, by creating a log file and manipulating it into a symlink that points to the targeted path; this can allow an unprivileged local user to make arbitrary root-owned files world-writable. In addition, a diagnostic collection tool (gimmelogs) running with root privileges was vulnerable to command injection from the dbstore, offering a second privilege escalation vector. (On Windows, gimmelogs does not have command injection but does allow writing a ZIP archive to an unintended location.) This affects Akamai Guardicore Platform Agent 7.0 through 7.3.1 and Akamai Zero Trust Client 6.0 through 6.1.5.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
检查时间与使用时间(TOCTOU)的竞争条件
Source: NVD (National Vulnerability Database)
Vulnerability Title
Akamai Guardicore Platform Agent 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Akamai Guardicore Platform Agent是美国Akamai公司的一个安全代理。 Akamai Guardicore Platform Agent 7.0版本至7.3.1版本和Akamai Zero Trust Client 6.0版本至6.1.5版本存在安全漏洞,该漏洞源于基于TOCTOU的本地权限提升,通过创建日志文件并操纵为指向目标路径的符号链接,可能导致未授权本地用户使任意root拥有的文件可被全局写入,同时诊断收集工具存在命令注入,提供第二个权限提升向量。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Akamai | Guardicore Platform Agent | 7.0 ~ 7.3.1 | - | |
| Akamai | Zero Trust Client | 6.0 ~ 6.1.5 | - |
II. Public POCs for CVE-2026-34354
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-34354
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same weakness: CWE-367
- CVE-2026-42344
FastGPT: DNS rebinding TOCTOU bypass in isInternalAddress al - CVE-2026-44694
n8n-MCP: Authenticated SSRF in n8n-mcp webhook and API clien - CVE-2025-69233
Apache CloudStack: Domain/account resources limits not honor - CVE-2026-41002
VMware Spring Cloud Config 安全漏洞 - CVE-2026-44112
OpenClaw < 2026.4.22 - Symlink Swap Race Condition in OpenSh
V. Comments for CVE-2026-34354
No comments yet