CVE-2026-41489

Pi-hole · Pi-hole

Pi-hole contains vulnerabilities related to incorrect permission assignment and privilege management, potentially allowing low-privileged local users to escalate privileges or modify system configurations.

Executive summary

A critical privilege management vulnerability in Pi-hole allows authenticated local users to potentially gain unauthorized control over system configurations and resources.

Vulnerability

This vulnerability involves incorrect permission assignment and improper privilege management, which can be leveraged by an authenticated local user to manipulate critical system settings.

Business impact

With a CVSS score of 8.8, this vulnerability poses a severe threat to the integrity and availability of the DNS sinkhole. An attacker who successfully exploits these permissions could modify DNS responses, redirect traffic, or compromise the underlying host, leading to a complete loss of system security.

Remediation

Immediate Action: Update Pi-hole to version 6.4.2 or later to address the privilege management and permission flaws.

Proactive Monitoring: Audit system logs for unexpected configuration changes or unauthorized attempts to access restricted file paths and system resources.

Compensating Controls: Apply the principle of least privilege to the underlying operating system and restrict local login access to the server hosting Pi-hole.

Exploitation status

Public Exploit Available: Unknown

Analyst recommendation

The severity of this issue necessitates an immediate update to the patched version. Administrators should also review current user access rights on the host machine to ensure that no unauthorized users have the ability to execute code or modify configurations within the Pi-hole environment.