{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-32769", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-13T18:53:03.534Z", "datePublished": "2026-03-20T00:18:55.991Z", "dateUpdated": "2026-03-20T20:01:28.750Z"}, "containers": {"cna": {"title": "Fullchain's Invalid NetworkPolicy enables a malicious actor to pivot into another namespace", "problemTypes": [{"descriptions": [{"cweId": "CWE-284", "lang": "en", "description": "CWE-284: Improper Access Control", "type": "CWE"}]}], "metrics": [{"cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "subIntegrityImpact": "HIGH", "subAvailabilityImpact": "HIGH", "baseScore": 7.1, "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H", "version": "4.0"}}], "references": [{"name": "https://github.com/ctfer-io/fullchain/security/advisories/GHSA-hxm7-9q36-c77f", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/ctfer-io/fullchain/security/advisories/GHSA-hxm7-9q36-c77f"}, {"name": "https://github.com/ctfer-io/fullchain/commit/dbcb90178bcb07a3f5a1efa4c6350f3a6ce34f51", "tags": ["x_refsource_MISC"], "url": "https://github.com/ctfer-io/fullchain/commit/dbcb90178bcb07a3f5a1efa4c6350f3a6ce34f51"}, {"name": "https://github.com/ctfer-io/fullchain/releases/tag/v0.1.1", "tags": ["x_refsource_MISC"], "url": "https://github.com/ctfer-io/fullchain/releases/tag/v0.1.1"}], "affected": [{"vendor": "ctfer-io", "product": "fullchain", "versions": [{"version": "< 0.1.1", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-20T00:18:55.991Z"}, "descriptions": [{"lang": "en", "value": "Fullchain is an umbrella project for deploying a ready-to-use CTF platform. In versions prior to 0.1.1, due to a mis-written NetworkPolicy, a malicious actor can pivot from a subverted application to any Pod out of the origin namespace. The flawed inter-ns NetworkPolicy breaks the security-by-default property expected as part of the deployment program, leading to a potential lateral movement. This issue has been fixed in version 0.1.1. To workaround, delete the failing network policy that should be prefixed by inter-ns- in the target namespace."}], "source": {"advisory": "GHSA-hxm7-9q36-c77f", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-20T20:01:20.449171Z", "id": "CVE-2026-32769", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-20T20:01:28.750Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-32769", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-20T20:01:20.449171Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-20T20:01:25.279Z"}}], "cna": {"title": "Fullchain's Invalid NetworkPolicy enables a malicious actor to pivot into another namespace", "source": {"advisory": "GHSA-hxm7-9q36-c77f", "discovery": "UNKNOWN"}, "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 7.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "NONE", "subIntegrityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "HIGH", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "vulnConfidentialityImpact": "NONE"}}], "affected": [{"vendor": "ctfer-io", "product": "fullchain", "versions": [{"status": "affected", "version": "< 0.1.1"}]}], "references": [{"url": "https://github.com/ctfer-io/fullchain/security/advisories/GHSA-hxm7-9q36-c77f", "name": "https://github.com/ctfer-io/fullchain/security/advisories/GHSA-hxm7-9q36-c77f", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/ctfer-io/fullchain/commit/dbcb90178bcb07a3f5a1efa4c6350f3a6ce34f51", "name": "https://github.com/ctfer-io/fullchain/commit/dbcb90178bcb07a3f5a1efa4c6350f3a6ce34f51", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/ctfer-io/fullchain/releases/tag/v0.1.1", "name": "https://github.com/ctfer-io/fullchain/releases/tag/v0.1.1", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Fullchain is an umbrella project for deploying a ready-to-use CTF platform. In versions prior to 0.1.1, due to a mis-written NetworkPolicy, a malicious actor can pivot from a subverted application to any Pod out of the origin namespace. The flawed inter-ns NetworkPolicy breaks the security-by-default property expected as part of the deployment program, leading to a potential lateral movement. This issue has been fixed in version 0.1.1. To workaround, delete the failing network policy that should be prefixed by inter-ns- in the target namespace."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-284", "description": "CWE-284: Improper Access Control"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-20T00:18:55.991Z"}}}, "cveMetadata": {"cveId": "CVE-2026-32769", "state": "PUBLISHED", "dateUpdated": "2026-03-20T20:01:28.750Z", "dateReserved": "2026-03-13T18:53:03.534Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-03-20T00:18:55.991Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ctfer:fullchain:*:*:*:*:*:go:*:*", "matchCriteriaId": "F43E8FC8-D19D-4C6B-8BD4-DB12AC54195B", "versionEndExcluding": "0.1.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Fullchain is an umbrella project for deploying a ready-to-use CTF platform. In versions prior to 0.1.1, due to a mis-written NetworkPolicy, a malicious actor can pivot from a subverted application to any Pod out of the origin namespace. The flawed inter-ns NetworkPolicy breaks the security-by-default property expected as part of the deployment program, leading to a potential lateral movement. This issue has been fixed in version 0.1.1. To workaround, delete the failing network policy that should be prefixed by inter-ns- in the target namespace."}, {"lang": "es", "value": "Fullchain es un proyecto paraguas para desplegar una plataforma CTF lista para usar. En versiones anteriores a la 0.1.1, debido a una NetworkPolicy mal escrita, un actor malicioso puede pivotar desde una aplicaci\u00f3n subvertida a cualquier Pod fuera del espacio de nombres de origen. La NetworkPolicy inter-ns defectuosa rompe la propiedad de seguridad por defecto esperada como parte del programa de despliegue, lo que lleva a un posible movimiento lateral. Este problema ha sido solucionado en la versi\u00f3n 0.1.1. Como soluci\u00f3n alternativa, elimine la NetworkPolicy fallida que deber\u00eda tener el prefijo inter-ns- en el espacio de nombres de destino."}], "id": "CVE-2026-32769", "lastModified": "2026-04-16T13:36:01.170", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "HIGH", "subConfidentialityImpact": "HIGH", "subIntegrityImpact": "HIGH", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-03-20T01:15:55.780", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/ctfer-io/fullchain/commit/dbcb90178bcb07a3f5a1efa4c6350f3a6ce34f51"}, {"source": "security-advisories@github.com", "tags": ["Release Notes"], "url": "https://github.com/ctfer-io/fullchain/releases/tag/v0.1.1"}, {"source": "security-advisories@github.com", "tags": ["Exploit", "Vendor Advisory"], "url": "https://github.com/ctfer-io/fullchain/security/advisories/GHSA-hxm7-9q36-c77f"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-284"}], "source": "security-advisories@github.com", "type": "Primary"}, {"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,0.1.1)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "fullchain", "source": "cna", "vendor": "ctfer-io"}, "product": "fullchain", "vendor": "ctfer-io"}], "analysis": {"en": {"generated_at": "2026-04-18T09:36:46.744422+00:00", "value": {"mitigation_remediation": ["Upgrade Fullchain to version\u202f0.1.1 or later, which corrects the NetworkPolicy documentation and enforcement.", "Delete the mis\u2011written NetworkPolicy prefixed by inter\u2011ns\u2011 in each affected namespace to restore the intended isolation until a patch is applied.", "Verify that the deployment\u2019s default deny inbound policy is active and that no other NetworkPolicies allow unintended namespace communication.", "Monitor inter\u2011namespace traffic for abnormal patterns that could indicate an attempted lateral movement."], "summary": {"action": "Upgrade", "impact": "Unauthorized Namespace Lateral Movement"}, "threat_synthesis": {"affected_systems": "The affected product is Fullchain, produced by ctfer. All releases older than 0.1.1 are vulnerable. The fix is delivered in Fullchain 0.1.1 and later.", "description_and_impact": "The vulnerability stems from a mis\u2011written NetworkPolicy in Fullchain versions before 0.1.1. That policy incorrectly permits traffic between Pods in different namespaces, effectively granting an attacker who compromises one Pod the ability to access any Pod elsewhere in the cluster. This flaw is an authorization failure (CWE\u2011284) that facilitates lateral movement and undermines the intended namespace isolation, potentially exposing sensitive data or allowing further compromise of cluster resources.", "risk_and_exploitability": "The CVSS score of 7.1 indicates a medium\u2011to\u2011high severity. The EPSS score of less than 1\u202f% suggests a very low probability of exploitation in the wild, and the vulnerability is not listed in the CISA KEV catalog. Exploitation requires an initial foothold within a namespace\u2011restricted application Pod; once inside, the attacker can pivot across namespaces because the faulty policy permits inter\u2011namespace communication."}}}}, "created": "2026-03-20T08:54:10.021769+00:00", "updated": "2026-04-18T09:45:25.831481+00:00", "vendors": ["ctfer-io", "ctfer-io$PRODUCT$fullchain"]}