Description
Fleet's Helm deployer did not fully apply ServiceAccount impersonation in two code paths, allowing a tenant with git push access to a Fleet-monitored repository to read secrets from any namespace on every downstream cluster targeted by their `GitRepo`.
Published: 2026-05-13
Score: 9.9 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability allows a tenant with git push capability to a Fleet‑monitored repository to exploit a bypass in the Helm deployer's ServiceAccount impersonation logic. The impersonated identity retains cluster‑admin privileges during template rendering, permitting the attacker to read any secret in any namespace across all downstream clusters targeted by that GitRepo. This reflects an authorization flaw identified as CWE‑863, leading to the unauthorized disclosure of highly sensitive configuration data.

Affected Systems

The affected product is Rancher’s Fleet Helm deployment component. No specific version numbers are disclosed, but the issue applies to any configuration using Fleet to deploy Helm charts from Git repositories.

Risk and Exploitability

The CVSS score of 9.9 marks this issue as Critical. While EPSS data is not available and the vulnerability is not listed in CISA’s KEV catalog, the high severity and the potential to read secrets from any namespace make the risk significant. The likely attack vector involves a malicious commit in a Git repository that Fleet watches; if not mitigated, attackers can retrieve secrets from any cluster namespace.

Generated by OpenCVE AI on May 13, 2026 at 09:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest security update for Rancher Fleet that corrects the ServiceAccount impersonation logic causing the privilege retention.
  • Limit git push rights to only trusted users or enforce access controls that restrict modifications to Fleet‑monitored repositories.
  • Monitor audit logs for unexpected secret access or permission escalation events and review cluster roles regularly to ensure no unintended cluster‑admin impersonation is granted.

Generated by OpenCVE AI on May 13, 2026 at 09:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-765j-qfrp-hm3j Fleet: Helm impersonation bypass of `RESTClientGetter` retains `cluster-admin` during template rendering
History

Wed, 13 May 2026 11:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 13 May 2026 09:30:00 +0000

Type Values Removed Values Added
First Time appeared Suse
Suse rancher
Vendors & Products Suse
Suse rancher

Wed, 13 May 2026 08:15:00 +0000

Type Values Removed Values Added
Description Fleet's Helm deployer did not fully apply ServiceAccount impersonation in two code paths, allowing a tenant with git push access to a Fleet-monitored repository to read secrets from any namespace on every downstream cluster targeted by their `GitRepo`.
Title Helm impersonation bypass of `RESTClientGetter` retains `cluster-admin` during template rendering
Weaknesses CWE-863
References
Metrics cvssV3_1

{'score': 9.9, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H'}

Subscriptions

Suse Rancher
cve-icon MITRE

Status: PUBLISHED

Assigner: suse

Published:

Updated: 2026-05-14T03:55:58.136Z

Reserved: 2026-04-16T13:37:50.679Z

Link: CVE-2026-41050

cve-icon Vulnrichment

Updated: 2026-05-13T10:48:02.163Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-13T08:16:16.780

Modified: 2026-05-13T15:35:35.267

Link: CVE-2026-41050

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-13T09:30:26Z

Weaknesses