CVE-2026-46617 | Fission up to 1.22.x Kubernetes API kubernetes.io unnecessary privileges (GHSA-85g2-pmrx-r49q)

A vulnerability marked as problematic has been reported in Fission up to 1.22.x. Affected by this vulnerability is an unknown functionality of the file /var/run/secrets/kubernetes.io of the component Kubernetes API. Performing a manipulation results in execution with unnecessary privileges.

This vulnerability is reported as CVE-2026-46617. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More