HarborGuardharborguardDatabase
Back to search
HIGHCVE-2026-49824Published Modified CNA GitHub_M

CVE-2026-49824: Fission: Cross-namespace Environment reference via unvalidated EnvironmentRef in Function admission webhook

Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.24.0, the Fission Function admission webhook (pkg/webhook/function.go) validated that spec.secrets[].namespace and spec.configmaps[].namespace equalled the function's own namespace but performed no equivalent check on spec.environment.namespace. This issue has been patched in version 1.24.0.

Metrics

CVSS v3.1
8.5
Severity
HIGH
Fixed in
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

This is an authorization bypass in Fission, the Kubernetes-native serverless framework, affecting versions prior to 1.24.0. The Function admission webhook validates that referenced Secrets and ConfigMaps stay within the function's own namespace, but applies no equivalent check to the spec.environment.namespace field, allowing any authenticated user with function-creation rights to reference an Environment object in a different namespace. Successful exploitation lets an attacker read a high-confidentiality cross-namespace Environment resource and make limited modifications, breaking the namespace isolation that Kubernetes tenancy models depend on. No fix version has been published upstream yet; HarborGuard is tracking the advisory for patch availability.

HarborGuard Coverage

Detection

Detection for CVE-2026-49824 is available across every HarborGuard environment; the CVE is ingested from upstream feeds (NVD, GitHub Advisory, and CNA feeds) within minutes of publication and matched against all customer images, including custom-built Fission images derived from affected versions. Any image containing a fission/fission component below 1.24.0 is flagged automatically in the pipeline scan results.

Available
Triage

HarborGuard scores this finding at CVSS 8.5 HIGH (v3.1) and can apply per-environment compliance policy weighting to escalate or suppress the alert based on whether Fission is deployed in a multi-tenant namespace topology. Triage routing is available to direct the finding to the appropriate team inbox within each customer organization based on image ownership and policy configuration.

Available
Patch

Because no upstream fix version has been published, HarborGuard re-checks the advisory on every ingest cycle and will make a patched-image rebuild available the moment the upstream maintainers release a remediated version. In the interim, customers with network-policy controls or admission webhook overrides can apply compensating configurations tracked in HarborGuard's advisory notes for this CVE.

Pending upstream

Exploit Conditions

  • Network reachabilityRequired

    The Fission API server and admission webhook are exposed over the network, so an attacker must be able to reach the Kubernetes API endpoint to submit a crafted Function resource.

  • AuthenticationRequired

    Any low-privilege account with permission to create or update Function resources in at least one Fission namespace is sufficient to trigger the missing validation check.

  • Victim interactionNot required

    No victim interaction is needed; the attacker submits a Function spec directly to the API server and the flawed webhook logic executes automatically.

  • Attack complexityDetail

    Exploit conditions are straightforward and reliable; the attacker simply sets spec.environment.namespace to an arbitrary target namespace with no race conditions or environmental prerequisites required.

Blast Radius

  • Attacker reads the full contents of an Environment object in an otherwise inaccessible namespace, which may include runtime container image references, build configuration, and environment-specific secrets embedded in the spec.
  • Attacker makes limited writes to the referenced Environment resource, potentially altering the runtime image or resource limits used by functions in the target namespace.
  • Kubernetes namespace boundaries between tenants or teams are silently bypassed, undermining any multi-tenant isolation model built on namespace-scoped RBAC.
  • No availability impact is introduced directly; the affected service continues running while the unauthorized cross-namespace access occurs.

How HarborGuard Handles This

Available on HarborGuard: because no upstream patch exists for CVE-2026-49824, HarborGuard monitors the advisory on every ingest cycle and will surface a patched-image rebuild the moment Fission 1.24.0 or a subsequent fix release is published upstream. For customers who opt into auto-remediation, the rebuild, regression-test run, and PR against affected workloads will be initiated automatically at that point, with no manual intervention required. In the meantime, HarborGuard surfaces this finding with a HIGH severity tag across any environment running an affected Fission image. Recommended compensating controls include applying Kubernetes NetworkPolicy rules to restrict API server access to only namespaces that legitimately need to create Function resources, tightening RBAC so that function-creation rights are granted only to explicitly trusted service accounts, and adding an OPA or Kyverno admission policy that enforces spec.environment.namespace equality as an out-of-band control until the webhook is patched. Where compliance policy permits, HarborGuard can route automated policy-enforcement suggestions for these controls directly to the infrastructure team inbox.

See how HarborGuard automates this
Affected packages
  • fission / fission
    < 1.24.0
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N
References