Fluentd RCE via Tag Injection (CVE-2026-44024, CVSS 9.8): The Observability Stack Just Became the Attack Surface

The Log Collector That Logs You Out

Fluentd, the CNCF-graduated unified logging layer used in millions of Kubernetes deployments worldwide, has a CVSS 9.8 remote code execution vulnerability. CVE-2026-44024 allows attackers to achieve arbitrary file write on the host through a path traversal in the ${tag} placeholder used in output file paths.

The attack is elegant in its simplicity: send a log event with a crafted tag containing path traversal sequences (../). When Fluentd processes the event, it substitutes the tag into the output file path. The result: an attacker who can send log events to Fluentd can write arbitrary files on the host filesystem — including cron jobs, SSH keys, or container escape payloads.

The Observability Paradox

Organizations deploy Fluentd to gain visibility into their infrastructure. It collects logs from every container, every service, every node. It has broad filesystem access by design — it needs to write logs somewhere. That broad access, combined with a path traversal in tag substitution, means the component deployed to detect attacks is itself the attack surface.

This is the observability paradox: the more visibility you add to your infrastructure, the more privileged components you deploy. Each privileged component is a potential pivot point. Fluentd runs as a DaemonSet with host filesystem mounts in most Kubernetes deployments. A file write vulnerability in this context is a cluster compromise.

The Broader Pattern

When the log collector is the vulnerability, who watches the watchers?

Remediation

Patch Fluentd immediately. Audit output configurations for ${tag} usage in file paths — any output plugin using tag-based path construction is potentially affected. In Kubernetes, restrict Fluentd's host filesystem mounts to the minimum required directories. Consider switching tag placeholders to a sanitized variable that strips path traversal sequences.