<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Fleet &gt;= 0.13.0, &lt; 0.13.11 - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/products/fleet--0.13.0--0.13.11/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Fri, 03 Jul 2026 12:27:12 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/products/fleet--0.13.0--0.13.11/feed.xml" rel="self" type="application/rss+xml"/><item><title>Fleet PSS Bypass Vulnerability (CVE-2026-44938) via addLabelsFromOptions</title><link>https://feed.craftedsignal.io/briefs/2026-07-fleet-pss-bypass/</link><pubDate>Fri, 03 Jul 2026 12:27:12 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-fleet-pss-bypass/</guid><description>A vulnerability in Fleet's agent-side deployer (CVE-2026-44938) allows an attacker with `git push` access to a Fleet-monitored repository to overwrite Pod Security Standards (PSS) enforcement labels on target Kubernetes namespaces, bypassing admission controls and enabling the deployment of otherwise prohibited workloads.</description><content:encoded><![CDATA[<p>A high-severity vulnerability, CVE-2026-44938, has been discovered in the Fleet agent's deployer component. This flaw allows an attacker who has gained <code>git push</code> access to a Fleet-monitored repository to manipulate Pod Security Standards (PSS) enforcement labels. Specifically, the <code>addLabelsFromOptions</code> function within the agent fails to properly filter security-sensitive <code>pod-security.kubernetes.io/</code> prefixed labels from <code>namespaceLabels</code> defined in <code>fleet.yaml</code> or <code>BundleDeployment.spec.options.namespaceLabels</code>. This oversight permits an attacker to overwrite and effectively downgrade PSS policies on a target Kubernetes namespace, thereby weakening admission controls and enabling the deployment of malicious or privileged workloads that would normally be blocked. The vulnerability impacts various versions of Fleet, including <code>0.15.0</code> to <code>0.15.1</code>, <code>0.14.0</code> to <code>0.14.5</code>, <code>0.13.0</code> to <code>0.13.10</code>, and <code>0.12.0</code> to <code>0.12.14</code>. This presents a significant risk to Kubernetes cluster integrity, as it can be leveraged to bypass critical security mechanisms.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li><strong>Initial Access (Git Repository)</strong>: Attacker gains <code>git push</code> access to a Fleet-monitored Git repository, potentially via compromised developer credentials or an insider threat.</li>
<li><strong>Configuration Modification</strong>: Attacker modifies the <code>fleet.yaml</code> file (or <code>BundleDeployment.spec.options.namespaceLabels</code>) within the compromised repository to include or modify <code>namespaceLabels</code> that override or downgrade existing Pod Security Standards.</li>
<li><strong>Code Commit and Push</strong>: The malicious configuration change is committed and pushed to the Fleet-monitored Git repository.</li>
<li><strong>Fleet Agent Deployment</strong>: The Fleet agent, observing changes in the Git repository, pulls the updated <code>fleet.yaml</code> and attempts to apply the <code>namespaceLabels</code> to the target Kubernetes namespace.</li>
<li><strong>PSS Label Overwrite</strong>: Due to CVE-2026-44938, the Fleet agent fails to filter security-sensitive <code>pod-security.kubernetes.io/</code> labels, inadvertently overwriting legitimate PSS enforcement labels on the target namespace.</li>
<li><strong>Admission Control Weakening</strong>: The target Kubernetes namespace's Pod Security Standard admission controls are effectively downgraded or disabled, allowing higher-privileged workloads to be deployed.</li>
<li><strong>Malicious Workload Deployment</strong>: The attacker then deploys a malicious or privileged Kubernetes workload (e.g., a container running as root, with hostPath mounts, or network access) to the now-weakened namespace.</li>
<li><strong>Impact</strong>: The deployed malicious workload executes, leading to potential confidentiality breaches (data exfiltration), integrity compromises (system modification), or availability issues (resource consumption, denial of service) within the Kubernetes cluster.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>Successful exploitation of CVE-2026-44938 allows an attacker to bypass Kubernetes Pod Security Standards (PSS) enforcement on affected namespaces, leading to weakened admission controls. This enables the deployment of privileged or otherwise restricted workloads, which can then be leveraged for unauthorized data exfiltration, system compromise, or disruption of services within the Kubernetes cluster. The ultimate impact on confidentiality, integrity, and availability depends on the specific permissions and actions of the attacker-deployed workload. While no specific victim counts are provided, any organization utilizing vulnerable Fleet versions in a multi-tenant or multi-developer environment where <code>git push</code> access could be compromised is at risk.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li><strong>Patch Immediately</strong>: Upgrade your Fleet deployments to a patched version (v0.15.2, v0.14.6, v0.13.11, or v0.12.15) to mitigate CVE-2026-44938.</li>
<li><strong>Implement NeuVector Workaround</strong>: If immediate patching is not possible, deploy NeuVector (SUSE Security) and configure an admission control Deny rule for &quot;Run as privileged&quot; in Protect mode. NeuVector evaluates pod specs independently of Kubernetes PSS namespace labels, blocking privileged containers even if PSS labels are downgraded due to CVE-2026-44938.</li>
<li><strong>Restrict Repository Access</strong>: Implement strict access controls for Git repositories monitored by Fleet, particularly in multi-tenant environments, to reduce the attack surface for CVE-2026-44938.</li>
<li><strong>Review Credentials</strong>: Review your systems for potentially leaked credentials and replace any that may be compromised, as <code>git push</code> access is a prerequisite for exploiting CVE-2026-44938.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>kubernetes</category><category>fleet</category><category>pss-bypass</category><category>admission-controller</category><category>supply-chain</category><category>defense-evasion</category></item></channel></rss>