Description
Flannel is a network fabric for containers, designed for Kubernetes. The Flannel project includes an experimental Extension backend that allows users to easily prototype new backend types. In versions of Flannel prior to 0.28.2, this Extension backend is vulnerable to a command injection that allows an attacker who can set Kubernetes Node annotations to achieve root-level arbitrary command execution on every flannel node in the cluster. The Extension backend's SubnetAddCommand and SubnetRemoveCommand receive attacker-controlled data via stdin (from the `flannel.alpha.coreos.com/backend-data` Node annotation). The content of this annotation is unmarshalled and piped directly to a shell command without checks. Kubernetes clusters using Flannel with the Extension backend are affected by this vulnerability. Other backends such as vxlan and wireguard are unaffected. The vulnerability is fixed in version v0.28.2. As a workaround, use Flannel with another backend such as vxlan or wireguard.
Published: 2026-03-27
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution
Action: Immediate Patch
AI Analysis

Impact

Flannel, a Kubernetes network fabric, includes an experimental Extension backend that accepts attacker-controlled data through the Node annotation flannel.alpha.coreos.com/backend-data. The backend’s SubnetAddCommand and SubnetRemoveCommand read this annotation and pipe its contents directly into a shell without validation, creating a command‑injection vulnerability (CWE‑77). An attacker who can write this annotation may inject arbitrary shell commands and execute them with root privileges on every Flannel node that uses the Extension backend, leading to full system compromise.

Affected Systems

The flaw affects all Flannel releases before v0.28.2 when the Extension backend is enabled. It is limited to flannel‑io:flannel and only the Extension backend; other supported backends such as vxlan and wireguard are not impacted.

Risk and Exploitability

The CVSS score of 7.5 signals moderate to high severity, while the EPSS score of less than 1% indicates a low likelihood of exploitation in the wild. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires the ability to set Kubernetes Node annotations, which typically implies cluster‑level permissions; an attacker with such access can add a malicious annotation to any node, trigger command execution, and gain root shell on the node. Although the probability of an exploit appears low, the potential impact is severe, warranting immediate attention.

Generated by OpenCVE AI on April 8, 2026 at 16:54 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Flannel to version 0.28.2 or later
  • Switch the backend from Extension to an unaffected backend such as vxlan or wireguard if an upgrade is not immediately possible
  • Restrict the ability to write the flannel.alpha.coreos.com/backend-data annotation to trusted administrators only
  • Audit node annotations for unexpected changes and monitor node activity for signs of malicious injection

Generated by OpenCVE AI on April 8, 2026 at 16:54 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-vchx-5pr6-ffx2 Flannel has cross-node remote code execution via extension backend BackendData injection
History

Wed, 08 Apr 2026 15:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:flannel-io:flannel:*:*:*:*:*:kubernetes:*:*

Tue, 31 Mar 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 30 Mar 2026 07:15:00 +0000

Type Values Removed Values Added
First Time appeared Flannel-io
Flannel-io flannel
Vendors & Products Flannel-io
Flannel-io flannel

Fri, 27 Mar 2026 19:45:00 +0000

Type Values Removed Values Added
Description Flannel is a network fabric for containers, designed for Kubernetes. The Flannel project includes an experimental Extension backend that allows users to easily prototype new backend types. In versions of Flannel prior to 0.28.2, this Extension backend is vulnerable to a command injection that allows an attacker who can set Kubernetes Node annotations to achieve root-level arbitrary command execution on every flannel node in the cluster. The Extension backend's SubnetAddCommand and SubnetRemoveCommand receive attacker-controlled data via stdin (from the `flannel.alpha.coreos.com/backend-data` Node annotation). The content of this annotation is unmarshalled and piped directly to a shell command without checks. Kubernetes clusters using Flannel with the Extension backend are affected by this vulnerability. Other backends such as vxlan and wireguard are unaffected. The vulnerability is fixed in version v0.28.2. As a workaround, use Flannel with another backend such as vxlan or wireguard.
Title Flannel vulnerable to cross-node remote code execution via extension backend BackendData injection
Weaknesses CWE-77
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Flannel-io Flannel
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-03-31T18:54:30.192Z

Reserved: 2026-03-11T14:47:05.684Z

Link: CVE-2026-32241

cve-icon Vulnrichment

Updated: 2026-03-31T18:51:19.570Z

cve-icon NVD

Status : Analyzed

Published: 2026-03-27T20:16:30.570

Modified: 2026-04-08T15:29:13.030

Link: CVE-2026-32241

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-08T20:01:07Z

Weaknesses
  • CWE-77

    Improper Neutralization of Special Elements used in a Command ('Command Injection')