CVE-2026-44947
MediumCVSS 6.9Exploitation Probability (EPSS)
Low risk14th percentile — higher than 14% of all known CVEs
Summary
A missing clean-up in the legacy Project Role Template Binding (PRTB) reconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security Admission (PSA) permissions after an administrator removes those permissions from a RoleTemplate.
Risk Assessment
The organization is at risk of retaining unauthorized access to pod security policies, potentially leading to privilege escalation and violation of Kubernetes cluster security policies.
Recommendation
Immediately upgrade Rancher to version 2.13.8 or later (for the 2.13 branch) and 2.14.4 or later (for the 2.14 branch), and audit existing PRTB bindings to remove stale permissions.
Original NVD description (English source)
A missing clean-up in the legacy Project Role Template Binding (PRTB) reconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security Admission (PSA) permissions after an administrator removes those permissions from a RoleTemplate.

