CVE-2026-44947 | A missing clean-up in the legacy Project Role Template Bindi… | CVSS 6.9 MEDIUM

Description

A missing clean-up in the legacy Project Role Template Binding (PRTB) reconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security Admission (PSA) permissions after an administrator removes those permissions from a RoleTemplate.

Metadata

CVE ID: CVE-2026-44947
State: PUBLISHED
Assigner: suse
Reserved: 2026-05-08 12:29 UTC
Published: 2026-06-30 14:21 UTC
Last updated: 2026-06-30 15:03 UTC
Primary CWE: CWE-281
CWE-281 Improper preservation of permissions
Vendor / Product: SUSE / Rancher
Sources: cve.org · NVD

Severity & Metrics

6.9 MEDIUM CVSS 4.0

CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N

SSVC — CISA Coordinator

Exploitation: none
Automatable: no
Tech. Impact: partial

Affected products (1)

Vendor	Product	Platform	Versions
SUSE	Rancher	—	2.13.0 < 2.13.7, 2.14.0 < 2.14.3

Weakness (CWE)

CWE	Source	Description
CWE-281	cna	CWE-281 Improper preservation of permissions

CVSS scores (1)

Score	Severity	Version	Source	Vector
6.9	MEDIUM	4.0	cna	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N

References (1)

https://github.com/rancher/rancher/security/advisories/GHSA-c4rp-wgqc-mfhc