Fission Environment CRD PodSpec Injection Leading to Node Escape and...

9.9 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Description

Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.24.0, the Environment.spec.runtime.podSpec / spec.builder.podSpec passthrough lacked validation, and MergePodSpec propagated dangerous fields into the generated pods. This issue has been patched in version 1.24.0.

AI Analysis

Fission Environment CRD PodSpec Injection vulnerability leading to Node Escape and Cluster Takeover

Basic Information

ID CVE-2026-50545

Source GitHub_M

Published Jun 10, 2026 at 17:26

Affected Product

Vendor fission

Product fission

Version < 1.24.0

Affected Versions fission fission < 1.24.0

CWE Classification

CWE-269 CWE-284 CWE-693

AI Assessment

AI Score 9.9 / 10

AI Severity Critical

Vendor Fission

Product Fission

Version < 1.24.0

References

{
    "lastseen": "",
    "description": "Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.24.0, the Environment.spec.runtime.podSpec / spec.builder.podSpec passthrough lacked validation, and MergePodSpec propagated dangerous fields into the generated pods. This issue has been patched in version 1.24.0.",
    "published": "2026-06-10T17:26:20.647Z",
    "modified": "2026-06-10T17:26:20.647Z",
    "type": "cve",
    "title": "Fission Environment CRD PodSpec Injection Leading to Node Escape and Cluster Takeover",
    "source": "GitHub_M",
    "references": "https://github.com/fission/fission/security/advisories/GHSA-wmgg-3p4h-48x7\nhttps://github.com/fission/fission/pull/3390\nhttps://github.com/fission/fission/pull/3391\nhttps://github.com/fission/fission/releases/tag/v1.24.0",
    "id": "CVE-2026-50545",
    "bulletinFamily": "",
    "cwe": [
        "CWE-269",
        "CWE-284",
        "CWE-693"
    ],
    "cvelist": null,
    "sourceData": "fission fission < 1.24.0",
    "sourceHref": "",
    "cvss": {
        "score": 9.9,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "fission",
    "version": "< 1.24.0",
    "vendor": "fission",
    "ai_description": "Fission Environment CRD PodSpec Injection vulnerability leading to Node Escape and Cluster Takeover",
    "ai_severity": "Critical",
    "ai_vendor": "Fission",
    "ai_product": "Fission",
    "ai_version": "< 1.24.0",
    "ai_score": 9.9
}

Fission Environment CRD PodSpec Injection Leading to Node Escape and Cluster Takeover_CVE-2026-50545