CVE-2026-44936 is a medium-severity server-side request forgery (SSRF) vulnerability in github.com/rancher/fleet (go), affecting versions >= 0.15.0, < 0.15.2. It is fixed in 0.15.2, 0.14.6, 0.13.11, 0.12.15.
Impact A vulnerability has been identified in Fleet when the helmRepoURLRegex field isn't set on a GitRepo resource. Fleet's bundle reader forwards Helm authentication credentials (BasicAuth) to any URL specified in the helm.repo field of a fleet.yaml file. An attacker with git push access to a Fleet-monitored repository can exploit this behavior by specifying a malicious URL in helm.repo. This causes the Fleet controller to send the configured Helm repository credentials to the attacker’s server. As a result, the attacker can capture the username and password that an administrator configured to access a private Helm chart repository. However, the response body from the attacker's server isn't included in the error message (this behavior was fixed in Fleet v0.13.3 and later), which prevents additional internal data from leaking through the status condition. The final severity of this vulnerability depends on the specific permissions of the leaked credentials. Fleet recommends you to: Review your system for potentially leaked credentials. Replace any credentials that might be compromised. Please consult the associated MITRE ATT&CK - Technique - Stored Data Manipulation and MITRE ATT&CK - Technique - Steal Application Access Token for further information about this category of attack. Patches To resolve this vulnerability, upgrade to a patched version of Fleet. The patched version of Fleet now requires you to set the helmRepoURLRegex field on the GitRepo. If the helmRepoURLRegex is empty or missing, Fleet won’t send credentials, regardless of the URL specified in fleet.yaml. When you upgrade, a Helm pre-upgrade job automatically migrates existing GitRepo resources that have helmSecretName or helmSecretNameForPaths configured but lack a helmRepoURLRegex. The migration job performs the following actions: The job extracts the scheme and host from the Helm repository URLs already stored in the resource's Bundles. For example, a GitRepo with Bundles referencing https://charts.example.com/stable receives helmRepoURLRegex: "^https://charts\.example\.com/". This limits credential forwarding to the origins already in use before the upgrade. Migrated resources are annotated with fleet.cattle.io/helm-regex-auto-migrated: "true" so you can easily audit them. If no Bundles with Helm repository URLs exist during the migration (for example, if the GitRepo has never successfully synced), helmRepoURLRegex remains empty and credentials aren't forwarded. You must set this field manually before Fleet will send credentials. The migration job runs only once per installation and records its status in a ConfigMap named fleet-helm-url-regex-migrated in the Fleet system namespace. Any GitRepo resources you create after the upgrade require an explicit helmRepoURLRegex to forward credentials. Patched versions of Fleet include releases v0.15.2, v0.14.6, 0.13.11, and v0.12.15. Workarounds If you cannot immediately upgrade to a patched version, use the following methods to mitigate the risk and audit your environment. Set helmRepoURLRegex on all GitRepo resources that use helmSecretName. Ensure the regular expression matches only your legitimate Helm repository URL. Example configuration: After upgrading to a patched version, review all auto-migrated GitRepo resources by running the following command: Verify that the auto-derived regular expression matches only your intended Helm repository origins. If a regular expression is broader than necessary, replace it with a more specific pattern. Credits This security issue was reported by the following collaborators according to our responsible disclosure policy: Radisauskas Arnoldas from NATO and the NATO Cyber Security Centre (NCSC). FluentLogic's security team. References If you have any questions or comments about this advisory: Reach out to the SUSE Rancher Security team for security related inquiries. Open an issue in the Rancher repository. Verify with our support matrix and product support lifecycle.
Untrusted input controls the target URL of a server-initiated request, which may reach internal services not otherwise accessible from outside. Typical impact: access to internal metadata services, internal APIs, or cloud credentials.
CVE-2026-44936 has a CVSS score of 5.0 (Medium). The vector is network-reachable, low privileges required, and no user interaction. A CVSS score reflects the worst-case severity of the vulnerability, not your specific exposure. Whether this affects your application depends on whether the vulnerable code is present and reachable in your environment.
A fixed version is available (0.15.2, 0.14.6, 0.13.11, 0.12.15). Upgrading removes the vulnerable code path.
go
github.com/rancher/fleet (>= 0.15.0, < 0.15.2)github.com/rancher/fleet (>= 0.14.0, < 0.14.6)github.com/rancher/fleet (>= 0.13.0, < 0.13.11)github.com/rancher/fleet (>= 0.12.0, < 0.12.15)github.com/rancher/fleet → 0.15.2 (go)github.com/rancher/fleet → 0.14.6 (go)github.com/rancher/fleet → 0.13.11 (go)github.com/rancher/fleet → 0.12.15 (go)Severity tells you how bad this could be in the worst case. It does not tell you whether you are exposed. Exploitability and impact are functions of runtime truth: whether the vulnerable code is present, reachable, and actually executes in your application. A vulnerable package can sit in your dependency tree and never run.
Kodem, an Intelligent Application Security platform, uses runtime intelligence to reveal which vulnerabilities actually execute in production, so teams prioritize the ones that genuinely matter instead of chasing every advisory.
Kodem's runtime-powered SCA identifies whether CVE-2026-44936 is reachable in your applications. Explore open-source security for your team.
See if CVE-2026-44936 is reachable in your applications. Get a demo
Already deployed Kodem? See CVE-2026-44936 in your environment →Upgrade the following packages to resolve this vulnerability:
github.com/rancher/fleet to 0.15.2 or latergithub.com/rancher/fleet to 0.14.6 or latergithub.com/rancher/fleet to 0.13.11 or latergithub.com/rancher/fleet to 0.12.15 or laterKodem Kai can prioritize this vulnerability in your dependency tree and generate a fix recommendation.
CVE-2026-44936 is a medium-severity server-side request forgery (SSRF) vulnerability in github.com/rancher/fleet (go), affecting versions >= 0.15.0, < 0.15.2. It is fixed in 0.15.2, 0.14.6, 0.13.11, 0.12.15. Untrusted input controls the target URL of a server-initiated request, which may reach internal services not otherwise accessible from outside.
CVE-2026-44936 has a CVSS score of 5.0 (Medium). This score reflects the worst-case severity of the vulnerability, not your specific exposure. Whether it represents real risk in your environment depends on whether the vulnerable code is present and reachable.
github.com/rancher/fleet (go) versions >= 0.15.0, < 0.15.2 is affected.
Yes. CVE-2026-44936 is fixed in 0.15.2, 0.14.6, 0.13.11, 0.12.15. Upgrade to this version or later.
Whether CVE-2026-44936 is exploitable in your environment depends on whether the vulnerable code is present and reachable. A CVSS score is a worst-case rating; it does not account for your specific deployment, configuration, or usage patterns. Kodem, an Intelligent Application Security platform, uses runtime intelligence to show which vulnerabilities actually execute in production, so you can focus on the ones that represent real risk. Get a demo
Exploitability and impact are not fixed properties of a CVE. They depend on runtime truth: whether the vulnerable code is present, reachable, and actually executes in your application. A high CVSS score on a dependency that never runs is not the same as real risk. Kodem, an Intelligent Application Security platform, uses runtime intelligence to reveal which vulnerabilities actually execute in production, so teams prioritize the ones that genuinely matter.
github.com/rancher/fleet to 0.15.2 or latergithub.com/rancher/fleet to 0.14.6 or latergithub.com/rancher/fleet to 0.13.11 or latergithub.com/rancher/fleet to 0.12.15 or later