
Two New Critical Spinnaker Vulnerabilities Allow RCE and Production Access
CybersecurityVulnerabilitiesCloudSecurityRemoteCodeExecution
Two vulnerabilities, CVE-2026-32604 and CVE-2026-32613, have been identified in Spinnaker with a severity rating of 10.0. These flaws enable attackers to execute arbitrary code and access credentials for production cloud environments and source control systems. The vulnerabilities provide a pathway for attackers to move from a compromised workstation to production, even if developers lack direct access.