CVE-2026-44948
MEDIUMPath Traversal in Rancher Fleet ImageScan GitRepo Path Handler
Title source: cnaExploitation Summary
EIP tracks 1 public exploit for CVE-2026-44948. PoCs published by HermesNA-1.
AI-analyzed exploit summary This repository contains an auto-generated stub module for CVE-2026-44948, a path traversal vulnerability in Rancher Fleet's ImageScan subsystem. The code includes placeholder logic for target probing but lacks actual exploit implementation or technical details about the vulnerability's mechanics.
Description
A path traversal vulnerability was found in Fleet's ImageScan subsystem in Rancher Fleet 0.12.0 up to 0.12.16, 0.13.0 up to 0.13.12, 0.14.0 up to 0.14.7 and 0.15.0 up to 0.15.3 could be used to traverse outside of the intended directory, causing a denial of service.
Exploits (1)
This repository contains an auto-generated stub module for CVE-2026-44948, a path traversal vulnerability in Rancher Fleet's ImageScan subsystem. The code includes placeholder logic for target probing but lacks actual exploit implementation or technical details about the vulnerability's mechanics.
References (1)
Scores
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X