CVE-2026-44882

8.1 HIGH

Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, ...

Published: 2026-05-28 · Last updated: 2026-06-01

Severity and scoring

CVSS: 8.1 HIGH
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CWE: CWE-863

Affected products

Vendor	Product
portainer	portainer

Description

Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33., Portainer proxies requests to Kubernetes clusters through a middleware layer (kubeClientMiddleware) that validates the requesting user's token before forwarding traffic to the cluster. When security.RetrieveTokenData returned an error, the middleware wrote an HTTP 403 response but was missing a return statement — execution continued into the handler with a nil tokenData value. The Kubernetes endpoints sit behind Portainer's outer AuthenticatedAccess bouncer, so an attacker requires a valid Portainer session. However, a user whose secondary token validation fails in kubeClientMiddleware — for example a user without permission to access a given Kubernetes endpoint — would have their request forwarded to the cluster anyway, bypassing the authorization check. The same defect was present in both the CE and EE codebases. This vulnerability is fixed in 2.33.8.

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-44882
[Exploit reference]https://github.com/portainer/portainer/security/advisories/GHSA-mgq6-4x29-88r3

Related CVEs

Same vendor

CVE-2026-44885 — Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, ... (5.5 MEDIUM)
CVE-2026-44884 — Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, ... (6.5 MEDIUM)
CVE-2026-44883 — Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, ... (7.5 HIGH)
CVE-2026-44881 — Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, ... (9.9 CRITICAL)
CVE-2026-44850 — Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, ... (8.5 HIGH)

Same CWE

CVE-2026-49219 — ImageMagick is free and open-source software used for editing and manipulating digital images (5.5 MEDIUM)
CVE-2026-53738 — Copy & Delete Posts through 1.5.4 lets any plugin-enabled non-admin role invoke every operation in the cdp_action_handling AJAX handler (8.1 HIGH)
CVE-2026-49824 — Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes (8.5 HIGH)
CVE-2026-49823 — Fission is an open-source, Kubernetes-native serverless framework that simplifies the deployment of functions and applications on Kubernetes (7.7 HIGH)
CVE-2026-48860 — Reliance on IP Address for Authentication vulnerability in Erlang/OTP ssl (inet_tls_dist module) allows unauthenticated bypass of the dis...