Security Flaw in SUSE Rancher Fleet's Bundle Reader Exposes Helm Credentials
CVE-2026-44936

5MEDIUM

Key Information:

Vendor

Suse

Status
Vendor
CVE Published:
6 July 2026

What is CVE-2026-44936?

A vulnerability exists in SUSE Rancher Fleet's bundle reader, where the helmRepoURLRegex field is not enforced. This oversight allows malicious entities to exploit the helm.repo field in a fleet.yaml file, potentially leaking sensitive Helm authentication credentials (BasicAuth) to unauthorized URLs. Attackers with access to Git repositories monitored by Fleet can leverage this weakness to gain unauthorized access to cloud deployments, making it imperative for users to update their versions to mitigate such risks.

Affected Version(s)

Rancher 0.15.0 < 0.15.2

Rancher 0.14.0 < 0.14.6

Rancher 0.13.0 < 0.13.11

References

CVSS V3.1

Score:
5
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.