
Privilege Escalation to Root in Lima QEMU Guests via World-Writable Agent Socket (CVE-2026-53657)
privilege_escalationsecurity_vulnerabilityLimaQEMUmacOSCVEvirtual_machine
A vulnerability in Lima, a tool for running Linux virtual machines on macOS, allows privilege escalation to root within QEMU guest environments. The issue stems from a world-writable agent socket, enabling unprivileged users to execute commands with elevated privileges. The flaw is tracked under CVE-2026-53657.