Suse

Rancher

66 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.51%
  • Veröffentlicht 07.07.2026 13:05:03
  • Zuletzt bearbeitet 08.07.2026 05:16:27

A vulnerability has been identified in Fleet's agent-side deployer, which did not filter security-sensitive keys from namespaceLabels in fleet.yaml (or BundleDeployment.spec.options.namespaceLabels) when applying them to the target namespace. An ...

  • EPSS 0.5%
  • Veröffentlicht 06.07.2026 09:52:18
  • Zuletzt bearbeitet 06.07.2026 19:46:02

Potential forgery of webhook requests when using a unauthenticated webhook in SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.5 could be used by remote attackers to cause a denial of service or a do...

  • EPSS 0.37%
  • Veröffentlicht 06.07.2026 09:30:20
  • Zuletzt bearbeitet 06.07.2026 19:46:02

Missing filtering when the helmRepoURLRegex field isn't set on a GitRepo resource in SUSE Rancher Fleet's bundle reader in 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 forwards Helm authentication credentials (B...

  • EPSS 0.12%
  • Veröffentlicht 06.07.2026 08:45:26
  • Zuletzt bearbeitet 06.07.2026 19:46:02

A information disclosure when DEBUG loglevel is set in SUSE Rancher AI Agent 1.0 before 1.0.2 could leak API keys or LLM response text with potential sensitive data into logfiles, allowing local attackers to misuse respective gained data or credentia...

  • EPSS 0.59%
  • Veröffentlicht 02.07.2026 16:00:06
  • Zuletzt bearbeitet 06.07.2026 12:44:21

Missing validation of "valuesFrom" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other tenant...

  • EPSS 0.29%
  • Veröffentlicht 30.06.2026 15:12:17
  • Zuletzt bearbeitet 02.07.2026 17:45:44

A path traversal vulnerability was found in Fleet's ImageScan subsystem in Rancher Fleet 0.12.0 up to 0.12.16, 0.13.0 up to 0.13.12, 0.14.0 up to 0.14.7 and 0.15.0 up to 0.15.3 could be used to traverse outside of the intended directory, causing a de...

  • EPSS 0.23%
  • Veröffentlicht 30.06.2026 14:41:34
  • Zuletzt bearbeitet 02.07.2026 17:45:44

A Rancher FleetWorkspace admission path allowed side effects to occur in the Rancher webhook handler for versions 0.7.0 up to 0.7.10, 0.8.0 up to 0.8.7, 0.9.0 up to 0.9.6 and 0.10.0 up to 0.10.7. An unauthenticated attacker with network access to t...

  • EPSS 0.23%
  • Veröffentlicht 30.06.2026 14:21:01
  • Zuletzt bearbeitet 02.07.2026 17:45:44

A missing clean-up in the legacy Project Role Template Binding (PRTB) reconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security Admission (PSA) permissions after an administrator re...

  • EPSS 0.32%
  • Veröffentlicht 30.06.2026 12:14:54
  • Zuletzt bearbeitet 02.07.2026 19:58:48

A SAML authentication replay vulnerability in Rancher's Assertion Consumer Service (ACS) handler did not enforce one-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14...

  • EPSS 0.37%
  • Veröffentlicht 30.06.2026 11:38:25
  • Zuletzt bearbeitet 02.07.2026 19:57:44

Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting principal access to any logged in user, in 2.13 before 2.13.6 and 2.14 before 2.14.2.