Tag

Rancher

4 briefs RSS

Rancher Fleet Helm Deployer Vulnerability Allows Security Bypass

A remote, authenticated attacker can exploit a vulnerability in Rancher Fleet Helm Deployer to bypass security measures and disclose sensitive information, which may enable further attacks.

Fleet Helm Deployer security-bypass information-disclosure rancher

2r 2t May 11, 2026

critical advisory

Rancher Fleet Helm Impersonation Bypass Vulnerability

2 rules 1 TTP

Fleet's Helm deployer did not fully apply ServiceAccount impersonation in two code paths, allowing a tenant with git push access to a Fleet-monitored repository to read secrets from any namespace on every downstream cluster targeted by their `GitRepo`.

Fleet +5 rancher helm kubernetes impersonation privilege-escalation cve-2026-41050

2r 1t May 7, 2026

high advisory

Rancher Extensions Path Traversal Vulnerability

2 rules 1 TTP

A path traversal vulnerability (CVE-2026-25705) exists in Rancher's Extensions through the `compressedEndpoint` field in a `UIPlugin` deployment, allowing malicious UI extensions to overwrite Rancher binaries, tamper with cluster state, or write to the host filesystem.

Rancher path-traversal kubernetes

2r 1t May 7, 2026

critical advisory

Rancher Vulnerability Allows Remote Code Execution and File Manipulation

2 rules 2 TTPs

An authenticated, remote attacker can exploit a vulnerability in Rancher to execute arbitrary program code and manipulate files, potentially leading to privilege escalation and system compromise.

Rancher code-execution file-manipulation

2r 2t May 4, 2026