{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-44935","assignerOrgId":"404e59f5-483d-4b8a-8e7a-e67604dd8afb","state":"PUBLISHED","assignerShortName":"suse","dateReserved":"2026-05-08T12:29:48.967Z","datePublished":"2026-07-02T16:00:06.751Z","dateUpdated":"2026-07-03T03:56:15.397Z"},"containers":{"cna":{"providerMetadata":{"orgId":"404e59f5-483d-4b8a-8e7a-e67604dd8afb","shortName":"suse","dateUpdated":"2026-07-02T16:01:11.745Z"},"title":"Rancher Fleet vulnerable to cross namespace secret disclosure via unvalidated `valuesFrom` references in Helm Deployer","datePublic":"2026-05-28T15:26:00.000Z","problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-1287","description":"CWE-1287 Improper validation of specified type of input","type":"CWE"}]}],"affected":[{"vendor":"SUSE","product":"Rancher","packageName":"Fleett","repo":"https://github.com/rancher/fleet/","versions":[{"status":"affected","version":"0.15.0","lessThan":"0.15.2","versionType":"semver"},{"status":"affected","version":"0.14.0","lessThan":"0.14.6","versionType":"semver"},{"status":"affected","version":"0.13.0","lessThan":"0.13.11","versionType":"semver"},{"status":"affected","version":"0.12.0","lessThan":"0.12.15","versionType":"semver"}],"defaultStatus":"unaffected"}],"descriptions":[{"lang":"en","value":"Missing validation of \"valuesFrom\" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other tenants.","supportingMedia":[{"type":"text/html","base64":false,"value":"<div><br>Missing validation of \"valuesFrom\" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other tenants.</div>"}]}],"references":[{"url":"https://github.com/rancher/fleet/security/advisories/GHSA-xr65-5cpm-g36x","tags":["vendor-advisory"]}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV3_1":{"version":"3.1","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseSeverity":"CRITICAL","baseScore":9.9,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"}}],"source":{"discovery":"EXTERNAL"},"x_generator":{"engine":"Vulnogram 1.0.2"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-07-02T00:00:00+00:00","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3","id":"CVE-2026-44935"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-07-03T03:56:15.397Z"}}]}}