HarborGuardharborguardDatabase
Back to search
CRITICALCVE-2026-50566Published Modified CNA GitHub_M

CVE-2026-50566: Fission: Environment Runtime.Container and Builder.Container SecurityContext bypass allows privileged pod creation

Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.24.0, a tenant with environments.fission.io create/update RBAC can run privileged / allowPrivilegeEscalation / dangerous-capability containers in the Fission function or builder namespace, scheduled under the executor's high-privilege service account — enabling container-sandbox escape, host filesystem and network access, and potential node- and cluster-level compromise. This issue has been patched in version 1.24.0.

Metrics

CVSS v3.1
9.9
Severity
CRITICAL
Fixed in
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

This is a security-context bypass in Fission, the open-source Kubernetes-native serverless framework. An authenticated user with permission to create or update Fission Environment resources can craft a malicious Environment manifest that injects privileged container settings, causing Fission's executor to schedule pods that run with elevated Kubernetes privileges under the executor's high-privilege service account. Successful exploitation grants the attacker container-sandbox escape, access to host filesystems and host networking, and the ability to pivot to node-level and cluster-level compromise. HarborGuard is tracking this advisory and will make a patched-image rebuild available as soon as version 1.24.0 or a subsequent fix is published upstream.

HarborGuard Coverage

Detection

Detection is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against customer images in connected registries and CI/CD pipelines, including custom-built Fission-based images. Any image derived from an affected Fission version is flagged regardless of base image source.

Available
Triage

HarborGuard scores this finding at CVSS 9.9 Critical and weights it against each environment's compliance policy, surfacing it to the appropriate security or platform-engineering inbox within the customer org. Per-environment policy rules can further escalate or filter the alert based on namespace sensitivity or workload classification.

Available
Patch

Because no fix version has been published upstream, HarborGuard re-checks the Fission advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment the upstream project ships a confirmed fix release. For customers with auto-remediation enabled, the rebuild, regression-test run, and PR against affected workloads will be triggered without manual intervention once the fix is available.

Pending upstream

Exploit Conditions

  • Network reachabilityRequired

    The attacker must reach the Fission API server over the network to submit a malicious Environment manifest.

  • AuthenticationRequired

    A low-privilege account holding environments.fission.io create or update RBAC rights is sufficient; no admin credentials are needed.

  • Victim interactionNot required

    No user interaction is needed; the exploit is triggered entirely by the attacker submitting the crafted manifest.

  • Attack complexityDetail

    Exploit conditions are reliable and free of environmental dependencies; no race conditions or special memory layout requirements exist.

Blast Radius

  • Attacker escapes the container sandbox and gains access to the host node's filesystem, including secrets, credentials, and kubeconfig files mounted or stored on the node.
  • Attacker accesses host networking, enabling traffic interception and lateral movement to other pods and services on the node's network interfaces.
  • Attacker operates under the executor's high-privilege service account, allowing Kubernetes API calls that can read, modify, or delete resources across namespaces.
  • Attacker can achieve full cluster compromise by leveraging node-level access and the bound service account token to escalate control plane privileges.

How HarborGuard Handles This

Available on HarborGuard: this CVE is flagged at Critical severity and tracked continuously against all images in connected customer registries and pipelines. Because no upstream fix has been published as of the CVE publication date, HarborGuard monitors the Fission advisory on every ingest cycle. The moment version 1.24.0 or a confirmed patch release appears upstream, a rebuilt image becomes available for affected environments. For customers with auto-remediation enabled, that rebuild is followed immediately by a regression-test run and a PR opened against affected workloads, with no manual trigger required. In the interim, compensating controls worth evaluating include restricting the environments.fission.io create and update RBAC verbs to only highly trusted principals, applying Kubernetes admission policies (such as OPA Gatekeeper or Kyverno rules) to reject pods requesting privileged or allowPrivilegeEscalation settings in the Fission function and builder namespaces, and isolating those namespaces with network policies that limit egress to necessary endpoints only.

See how HarborGuard automates this
Affected packages
  • fission / fission
    < 1.24.0
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References