CVE-2026-49822: Fission Kubernetes Namespace Isolation Bypass via KubernetesWatchTrigger
A vulnerability in Fission, an open-source serverless framework for Kubernetes, allows low-privilege developers to spy on activity in other namespaces. Specifically, a developer with limited access who can create a KubernetesWatchTrigger (KWT) in their own namespace can exploit this to establish unauthorized monitoring of unrelated namespaces. This violates namespace isolation, a core security boundary in Kubernetes. The issue has been patched in version 1.24.0.
Source data · NVD / CISA · public domain
- CVSS
- 3.1 · 7.7 HIGH · CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
- Weaknesses (CWE)
- CWE-284, CWE-862
- Affected products
- 0 configuration(s)
- Published / Modified
- 2026-06-10 / 2026-06-17
NVD description (verbatim)
Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes. Prior to version 1.24.0, a low-privilege developer who could create a KubernetesWatchTrigger (KWT) in their own namespace was able to establish a persistent surveillance channel over any other namespace. This issue has been patched in version 1.24.0.
3 reference(s) · View on NVD →
SEC.co analysis · AI-assisted, reviewed against source
Technical summary
CVE-2026-49822 stems from improper access control in Fission's KubernetesWatchTrigger implementation. The vulnerability allows a low-privilege user (PR:L) to craft a KWT resource that, when created in one namespace, can establish a persistent watch channel over arbitrary other namespaces. This violates the principle of least privilege and Kubernetes' namespace isolation model. The attack requires network access (AV:N) but no user interaction (UI:N), and the impact crosses namespace boundaries (S:C), resulting in confidentiality compromise (C:H). The underlying root cause relates to insufficient authorization checks (CWE-862) and improper restriction of namespace-level operations (CWE-284).
Business impact
Multi-tenant Kubernetes clusters running Fission become vulnerable to cross-namespace espionage. A developer with limited scope—perhaps sandboxed to a single project namespace—can covertly monitor production workloads, secrets, ConfigMaps, and function execution logs in other namespaces. This exposes sensitive business logic, credentials, and operational data. The persistent nature of the surveillance channel makes detection difficult and extends exposure window. Organizations relying on namespace isolation for compliance or cost-center separation face control breakdown.
Affected systems
Fission versions prior to 1.24.0 are affected. Any Kubernetes cluster deploying Fission and relying on namespace-level access controls is at risk, particularly multi-tenant clusters where different teams or projects operate in separate namespaces. The vulnerability is exploitable by any user with KWT creation permissions in their namespace, regardless of their overall cluster privilege level.
Exploitability
Exploitability is high. The attack requires only low privileges (developer-level access to create resources in a namespace) and network connectivity to the Kubernetes API. No user interaction is needed, and the exploit path is straightforward: create a malicious KWT resource. However, this vulnerability is not yet in CISA's Known Exploited Vulnerabilities (KEV) catalog, suggesting active exploitation in the wild has not been documented at time of disclosure. The barrier to weaponization is low, making prompt patching critical before threat actors adapt.
Remediation
Upgrade Fission to version 1.24.0 or later. Organizations unable to upgrade immediately should implement restrictive RBAC policies limiting KWT creation to trusted service accounts, and apply network policies to restrict watch channel communication. Monitor audit logs for suspicious KWT creation in non-production namespaces. Consider running separate Fission control planes per tenant environment as a compensating control.
Patch guidance
Verify the availability of Fission 1.24.0 or later through your deployment mechanism (Helm, package manager, direct image pull). Review vendor advisories and release notes to confirm the patch fully addresses this vulnerability. Test the upgrade in a non-production Kubernetes cluster first, ensuring backward compatibility with existing KWT and function definitions. Plan a maintenance window and perform a rolling update of the Fission controller and related components to minimize service disruption.
Detection guidance
Monitor Kubernetes audit logs for KubernetesWatchTrigger resource creation events, especially in namespaces where function deployment is unexpected. Look for patterns where a single user or service account creates KWTs across multiple namespaces. Implement monitoring on apiserver watch channels to detect anomalous cross-namespace observation. Use tools like Falco or eBPF-based runtime security to detect process-level watch handle creation by Fission components. Flag cases where watch channels persist longer than typical function invocation durations.
Why prioritize this
This vulnerability merits urgent attention (CVSS 7.7 HIGH) due to the combination of low exploitation barriers, cross-namespace impact, and confidentiality compromise. While not yet in the KEV catalog, the ease of attack and the sensitive data at risk—particularly in multi-tenant production clusters—justify immediate patching. Organizations with strict compliance requirements around data isolation should treat this as critical.
Risk score, explained
The CVSS 7.7 score reflects the high confidentiality impact (C:H) in a scenario where namespace isolation is broken (S:C), combined with low barriers to exploitation (AC:L, PR:L, AV:N). The lack of integrity or availability impact moderates the score from critical. In high-risk environments (e.g., regulatory, SaaS platforms, or competitive industries), the contextual risk is substantially higher than the base score suggests.
Frequently asked questions
Does this affect Fission running on non-Kubernetes platforms?
No. Fission is Kubernetes-native; this vulnerability is specific to Kubernetes deployments. Other orchestration platforms are unaffected.
Can a developer without KWT creation permissions exploit this?
No. The vulnerability requires the ability to create KubernetesWatchTrigger resources in at least one namespace. RBAC policies that restrict KWT creation to specific users or service accounts will block exploitation.
Is there a workaround if we cannot patch immediately?
Yes. Implement strict RBAC policies that deny KWT creation to non-admin users, and isolate sensitive namespaces using network policies. However, these are temporary mitigations; upgrading is the definitive fix.
How will we know if someone has exploited this vulnerability?
Check Kubernetes audit logs for unusual KWT creation patterns and cross-namespace watch channel activity. Enable and monitor Fission's logging, and inspect for unexpected watch operations targeting restricted namespaces.
This analysis is based on the vulnerability disclosure as of 2026-06-17. Patch availability, CVSS scores, and KEV status may change; always consult the official Fission security advisories and vendor guidance. Proof-of-concept code and exploitation techniques are not provided. This page is for informational purposes and does not constitute legal, compliance, or medical advice. Conduct your own risk assessment based on your environment and threat model. Source: NVD (public-domain), retrieved 2026-07-19. Analysis generated by SEC.co (claude-haiku-4-5).
Related vulnerabilities
- CVE-2026-5228HIGHWriteUp Mobile App Access Control Bypass Vulnerability (CVSS 8.8)
- CVE-2026-41160MEDIUMEspoCRM Broken Access Control in Note Pinning API (v9.3.5 Patch)
- CVE-2018-25391HIGHHaPe PKH 1.1 Authorization Bypass – Unauthorized Record Deletion Vulnerability
- CVE-2025-22426HIGHAndroid ComputerEngine URI Escalation Privilege Vulnerability
- CVE-2025-26418HIGHAndroid CarDevicePolicyService Privilege Escalation (CVSS 7.8)
- CVE-2025-53345HIGHThimPress Thim Core Missing Authorization Leads to Code Execution
- CVE-2026-0272HIGHPalo Alto PAN-OS Privilege Escalation Vulnerability (PA-Series, VM-Series, Panorama)
- CVE-2026-10737HIGHWordPress SP Project & Document Manager Unauthenticated File Access Vulnerability