Tag
high
advisory
Fleet Server gRPC PublishLogs Endpoint Denial-of-Service Vulnerability (CVE-2026-26062)
2 rules 1 TTP 1 IOCFleet server versions prior to 4.81.0 are vulnerable to a denial-of-service (DoS) via the gRPC Launcher `PublishLogs` endpoint, where unexpected input values can cause the server process to terminate upon receiving a crafted request from an authenticated Launcher host.
fleet/v4
denial-of-service
grpc
fleet
github advisory
2r
1t
1i
critical
advisory
Rancher Fleet Helm Impersonation Bypass Vulnerability
2 rules 1 TTPFleet's Helm deployer did not fully apply ServiceAccount impersonation in two code paths, allowing a tenant with git push access to a Fleet-monitored repository to read secrets from any namespace on every downstream cluster targeted by their `GitRepo`.
Fleet +5
rancher
helm
kubernetes
impersonation
privilege-escalation
cve-2026-41050
2r
1t
critical
advisory
Multiple Vulnerabilities in Fleet
2 rules 8 TTPsMultiple vulnerabilities in Fleet allow an attacker to perform SQL injection, denial of service, bypass security measures, disclose information, and execute arbitrary program code with administrator privileges.
fleet
vulnerability
sql-injection
denial-of-service
2r
8t