Security Flaw in SUSE Rancher Fleet's Bundle Reader Exposes Helm Credentials
CVE-2026-44936
5MEDIUM
What is CVE-2026-44936?
A vulnerability exists in SUSE Rancher Fleet's bundle reader, where the helmRepoURLRegex field is not enforced. This oversight allows malicious entities to exploit the helm.repo field in a fleet.yaml file, potentially leaking sensitive Helm authentication credentials (BasicAuth) to unauthorized URLs. Attackers with access to Git repositories monitored by Fleet can leverage this weakness to gain unauthorized access to cloud deployments, making it imperative for users to update their versions to mitigate such risks.
Affected Version(s)
Rancher 0.15.0 < 0.15.2
Rancher 0.14.0 < 0.14.6
Rancher 0.13.0 < 0.13.11