{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-41184","assignerOrgId":"e6d453f4-3dae-4941-bcea-9af25f4e824d","state":"PUBLISHED","assignerShortName":"Tigera","dateReserved":"2026-04-17T17:41:35.905Z","datePublished":"2026-05-28T15:47:42.173Z","dateUpdated":"2026-05-28T17:04:36.059Z"},"containers":{"cna":{"providerMetadata":{"orgId":"e6d453f4-3dae-4941-bcea-9af25f4e824d","shortName":"Tigera","dateUpdated":"2026-05-28T15:47:42.173Z"},"title":"ServiceAccount token disclosure via install-cni container logs","datePublic":"2026-05-28T16:00:00.000Z","problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-532","description":"CWE-532 Insertion of sensitive information into log file","type":"CWE"}]}],"impacts":[{"capecId":"CAPEC-150","descriptions":[{"lang":"en","value":"CAPEC-150 Collect Data from Common Resource Locations"}]}],"affected":[{"vendor":"Tigera","product":"Calico","packageName":"cni-plugin","versions":[{"status":"unaffected","version":"3.32.0","versionType":"semver"},{"status":"affected","version":"0","lessThan":"3.31.6","versionType":"semver"}],"defaultStatus":"affected"}],"cpeApplicability":[{"operator":"OR","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:tigera:calico:3.32.0:*:*:*:*:*:*:*"},{"vulnerable":true,"criteria":"cpe:2.3:a:tigera:calico:*:*:*:*:*:*:*:*","versionStartIncluding":"0","versionEndExcluding":"3.31.6"}]}]}],"descriptions":[{"lang":"en","value":"In Calico, the install-cni init container logs the rendered CNI configuration to standard output. When the configuration template uses the __SERVICEACCOUNT_TOKEN__ placeholder (Canal/Flannel-Calico deployments), the installer substitutes the live Kubernetes ServiceAccount bearer token before logging, exposing the token to any authenticated user with pods/log permission in the namespace with calico-node. The token holds patch privileges on pods/status, enabling annotation-based attacks against cluster workloads. The default kubeconfig-based authentication path is not affected. This is a direct regression of TTA-2018-001.","supportingMedia":[{"type":"text/html","base64":false,"value":"<span>In Calico, the install-cni init container logs the rendered CNI configuration to standard output. When the configuration template uses the </span><span>__SERVICEACCOUNT_TOKEN__</span><span> placeholder (Canal/Flannel-Calico deployments), the installer substitutes the live Kubernetes ServiceAccount bearer token before logging, exposing the token to any authenticated user with </span><span>pods/log</span><span> permission in the namespace with calico-node. The token holds </span><span>patch</span><span> privileges on pods/status, enabling annotation-based attacks against cluster workloads. The default kubeconfig-based authentication path is not affected. This is a direct regression of TTA-2018-001.</span>"}]}],"references":[{"url":"https://github.com/projectcalico/calico/pull/12502","tags":["patch"]},{"url":"https://github.com/projectcalico/calico/pull/12527","tags":["patch"]},{"url":"https://github.com/projectcalico/calico/pull/12526","tags":["patch"]},{"url":"https://www.tigera.io/security-bulletins/tta-2026-001/","tags":["vendor-advisory"]}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV4_0":{"attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","subConfidentialityImpact":"LOW","vulnIntegrityImpact":"NONE","subIntegrityImpact":"LOW","vulnAvailabilityImpact":"NONE","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED","version":"4.0","baseSeverity":"MEDIUM","baseScore":6,"vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:L/SA:L"}}],"credits":[{"lang":"en","value":"Behnam Shobiri","type":"finder"},{"lang":"en","value":"Behnam Shobiri","type":"remediation developer"},{"lang":"en","value":"Anthony Tam","type":"remediation reviewer"},{"lang":"en","value":"Matt Dupre","type":"remediation reviewer"},{"lang":"en","value":"Casey Davenport","type":"remediation verifier"}],"source":{"discovery":"INTERNAL"},"x_generator":{"engine":"Vulnogram 1.0.2"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-05-28T17:04:29.437633Z","id":"CVE-2026-41184","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-05-28T17:04:36.059Z"}}]}}