Cross-Site WebSocket Hijacking in Kubetail by Kubetail Org
CVE-2026-44514

6.5MEDIUM

Key Information:

Vendor: Kubetail-org
Status: Kubetail; Github.com/kubetail-org/kubetail/modules/cli; Github.com/kubetail-org/kubetail/modules/dashboard
Vendor: CVE Published:; 14 May 2026

🔔 Create Kubetail-org Vulnerability Alert

What is CVE-2026-44514?

Kubetail is a real-time logging tool for Kubernetes that had a vulnerability in versions prior to 0.14.0, exposing WebSocket endpoints without proper validation of the Origin header during connection upgrades. This flaw allows a malicious website to hijack a user's active Kubetail session, potentially granting access to Kubernetes logs in real-time. Both standalone (default http://localhost:7500) and cluster deployments are affected, particularly when set up behind an Ingress with HTTP basic authentication. A fix has been implemented in version 0.14.0.

Affected Version(s)

github.com/kubetail-org/kubetail/modules/cli < 0.16.0

github.com/kubetail-org/kubetail/modules/dashboard < 0.14.0

kubetail < 0.14.0

References

https://github.com/kubetail-org/kubetail/security/advisor...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 14, 2026
Vulnerability Reserved
May 6, 2026

CVE-2026-44514 Data

JSON