GO-2026-4565 — Vulnetix

GO-2026-4565 PUBLISHED

Sealed Secrets for Kubernetes: Rotate API Allows Scope Widening from Strict/Namespace-Wide to Cluster-Wide via Untrusted Template Annotations in github.com/bitnami-labs/sealed-secrets

Affected Products

Vendor	Product	Versions
github.com	bitnami-labs/sealed-secrets	0, 0

Timeline

Mar 10, 2026 CVE Published
Mar 23, 2026 CVE Updated
May 1, 2026 Security Advisory

References

https://github.com/bitnami-labs/sealed-secrets/security/advisories/GHSA-465p-v42x-3fmj advisory
https://nvd.nist.gov/vuln/detail/CVE-2026-22728 advisory
https://github.com/bitnami-labs/sealed-secrets/commit/d57ee4a8357d250e602b995399b525496ab688c1 patch
https://github.com/bitnami-labs/sealed-secrets/releases/tag/v0.36.0 url

Open in Interactive Console →