What is the CVSS score of CVE-2026-24835?

CVE-2026-24835 has a CVSS 3.1 base score of 7.1 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N. EPSS exploitation probability: 0.1%.

Which versions of Kubernetes are affected by CVE-2026-24835?

Podman Desktop versions prior to 1.25.1 contain an authentication bypass vulnerability that allows malicious extensions to gain unauthorized access to all stored authentication credentials and…. A patch is available.

Is there a public PoC exploit available for CVE-2026-24835?

Yes, a public proof-of-concept exploit is available for CVE-2026-24835. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate CVE-2026-24835?

Within 24 hours: Identify all systems running Podman Desktop and document current versions in use. Within 7 days: Deploy Podman Desktop version 1.25.1 or later across all affected systems and verify successful installation. Within 30 days: Audit extension usage across the organization, remove unauthorized or untrusted extensions, and implement a code review process for any custom extensions before deployment.

Kubernetes CVE-2026-24835

HIGH

Improper Authorization (CWE-285)

2026-01-28 security-advisories@github.com

Authentication Bypass Kubernetes Red Hat Podman Desktop

7.1

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

PoC Detected

Mar 02, 2026 - 18:27 vuln.today

Public exploit code

Patch released

Mar 02, 2026 - 18:27 nvd

Patch available

CVE Published

Jan 28, 2026 - 21:16 nvd

HIGH 7.1

DescriptionNVD

Podman Desktop is a graphical tool for developing on containers and Kubernetes. A critical authentication bypass vulnerability in Podman Desktop prior to version 1.25.1 allows any extension to completely circumvent permission checks and gain unauthorized access to all authentication sessions. The isAccessAllowed() function unconditionally returns true, enabling malicious extensions to impersonate any user, hijack authentication sessions, and access sensitive resources without authorization. This vulnerability affects all versions of Podman Desktop. Version 1.25.1 contains a patch for the issue.

AnalysisAI

Podman Desktop versions prior to 1.25.1 contain an authentication bypass in the extension permission framework where the isAccessAllowed() function always returns true, allowing malicious extensions to hijack authentication sessions and access sensitive resources without authorization. Public exploit code exists for this vulnerability, affecting all current deployments of the affected product. …

RemediationAI

Within 24 hours: Identify all systems running Podman Desktop and document current versions in use. Within 7 days: Deploy Podman Desktop version 1.25.1 or later across all affected systems and verify successful installation. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory