CVE Catalog

CVE-2026-44947

MediumCVSS 6.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.23%

14th percentile — higher than 14% of all known CVEs

Summary

A missing clean-up in the legacy Project Role Template Binding (PRTB) reconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security Admission (PSA) permissions after an administrator removes those permissions from a RoleTemplate.

Risk Assessment

The organization is at risk of retaining unauthorized access to pod security policies, potentially leading to privilege escalation and violation of Kubernetes cluster security policies.

Recommendation

Immediately upgrade Rancher to version 2.13.8 or later (for the 2.13 branch) and 2.14.4 or later (for the 2.14 branch), and audit existing PRTB bindings to remove stale permissions.

Original NVD description (English source)

A missing clean-up in the legacy Project Role Template Binding (PRTB) reconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security Admission (PSA) permissions after an administrator removes those permissions from a RoleTemplate.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS