GHSA-v455-mv2v-5g92: Fission Container Executor Function PodSpec Injection Leading to Node Escape
Fission versions prior to 1.24.0 contain a critical vulnerability in the Container Executor path that allows a tenant with only functions.fission.io/create permission to escalate privileges and escape the node. This occurs because the Function.spec.podspec field was not properly validated, allowing malicious pod specifications that mount the host root filesystem and share host namespaces. The executor merges these unsafe podspecs into deployments running with high privileges, enabling node escape. The issue is fixed in version 1.24.0 by adding strict validation and sanitization of podspec fields that could lead to privilege escalation or host access.
AI Analysis
Technical Summary
The vulnerability arises from insufficient validation of the Function.spec.podspec in Fission's Container Executor. The validation only checked for the presence of podspec but did not inspect its contents. The merge logic unconditionally forwarded privileged podspec fields such as hostPID, hostNetwork, hostIPC, hostPath volumes, serviceAccountName, and privileged container flags into the deployment spec. This allowed a tenant with only functions.fission.io/create permission to craft a podspec that mounts the host root filesystem and shares host namespaces, effectively escalating privileges to node escape. The executor, running with a high-privilege service account, creates the deployment on behalf of the tenant, turning function creation into an effective deployment creation with arbitrary pod security configurations. The vulnerability is fixed in Fission v1.24.0 by adding podspec safety validation and sanitization during admission and merge.
Potential Impact
A tenant with limited permissions (functions.fission.io/create) can escalate privileges to perform a node escape by deploying a privileged pod that shares host namespaces and mounts the host filesystem. This leads to full control over the node, compromising confidentiality, integrity, and availability of the host system and potentially the entire cluster.
Mitigation Recommendations
This vulnerability is fixed in Fission version 1.24.0. Users should upgrade to v1.24.0 or later to receive the official fix, which adds strict validation and sanitization of the Function.spec.podspec to reject unsafe configurations. Functions specifying host namespaces, hostPath volumes, privileged containers, or serviceAccountName overrides are now rejected at admission. No additional mitigation is required if running the fixed version.
GHSA-v455-mv2v-5g92: Fission Container Executor Function PodSpec Injection Leading to Node Escape
Description
Fission versions prior to 1.24.0 contain a critical vulnerability in the Container Executor path that allows a tenant with only functions.fission.io/create permission to escalate privileges and escape the node. This occurs because the Function.spec.podspec field was not properly validated, allowing malicious pod specifications that mount the host root filesystem and share host namespaces. The executor merges these unsafe podspecs into deployments running with high privileges, enabling node escape. The issue is fixed in version 1.24.0 by adding strict validation and sanitization of podspec fields that could lead to privilege escalation or host access.
CVSS v3.1
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability arises from insufficient validation of the Function.spec.podspec in Fission's Container Executor. The validation only checked for the presence of podspec but did not inspect its contents. The merge logic unconditionally forwarded privileged podspec fields such as hostPID, hostNetwork, hostIPC, hostPath volumes, serviceAccountName, and privileged container flags into the deployment spec. This allowed a tenant with only functions.fission.io/create permission to craft a podspec that mounts the host root filesystem and shares host namespaces, effectively escalating privileges to node escape. The executor, running with a high-privilege service account, creates the deployment on behalf of the tenant, turning function creation into an effective deployment creation with arbitrary pod security configurations. The vulnerability is fixed in Fission v1.24.0 by adding podspec safety validation and sanitization during admission and merge.
Potential Impact
A tenant with limited permissions (functions.fission.io/create) can escalate privileges to perform a node escape by deploying a privileged pod that shares host namespaces and mounts the host filesystem. This leads to full control over the node, compromising confidentiality, integrity, and availability of the host system and potentially the entire cluster.
Mitigation Recommendations
This vulnerability is fixed in Fission version 1.24.0. Users should upgrade to v1.24.0 or later to receive the official fix, which adds strict validation and sanitization of the Function.spec.podspec to reject unsafe configurations. Functions specifying host namespaces, hostPath volumes, privileged containers, or serviceAccountName overrides are now rejected at admission. No additional mitigation is required if running the fixed version.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- GHSA-v455-mv2v-5g92
- Osv Schema Version
- 1.4.0
- Aliases
- ["CVE-2026-50563"]
- Ecosystems
- ["Go"]
- Database Specific Severity
- CRITICAL
- Cvss Version
- 3.1
Threat ID: 6a4452e827e9c797198e193c
Added to database: 06/30/2026, 23:36:08 UTC
Last enriched: 06/30/2026, 23:51:11 UTC
Last updated: 06/30/2026, 23:51:11 UTC
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.