Unauthorized Pod Security Admission in Rancher by Rancher Labs
CVE-2026-44947

6.9MEDIUM

Key Information:

Vendor: Suse
Status: Rancher
Vendor: CVE Published:; 30 June 2026

What is CVE-2026-44947?

A vulnerability in Rancher versions 2.13.0 through 2.13.7 and 2.14.0 through 2.14.3 arises from an inadequate clean-up process in the Project Role Template Binding (PRTB) reconciler. This flaw permits users to maintain unauthorized Pod Security Admission permissions even after these permissions have been revoked by an administrator from a RoleTemplate, potentially compromising the security posture of the affected systems.

Affected Version(s)

Rancher 2.13.0 < 2.13.7

Rancher 2.14.0 < 2.14.3

References

https://github.com/rancher/rancher/security/advisories/GH...

vendor-advisory

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 30, 2026
Vulnerability Reserved
May 8, 2026

Credit

Isaac David

CVE-2026-44947 Data

JSON

Suse

What is CVE-2026-44947?

Affected Version(s)

References

CVSS V4

Timeline

Credit