Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    3983 vulnerabilities by suse

    CERTFR-2026-AVI-0833

    Vulnerability from certfr_avis - Published: 2026-07-03 - Updated: 2026-07-03

    De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    SUSE Public Cloud Module Public Cloud Module 15-SP7
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing 15 SP5
    SUSE SUSE Linux Enterprise High Availability Extension SUSE Linux Enterprise High Availability Extension 15 SP4
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
    SUSE openSUSE Leap openSUSE Leap 15.5
    SUSE SUSE Linux Enterprise Live Patching SUSE Linux Enterprise Live Patching 15-SP5
    SUSE SUSE Linux Enterprise Real Time SUSE Linux Enterprise Real Time 15 SP7
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 16.0
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing 15 SP4
    SUSE SUSE Manager Retail Branch Server SUSE Manager Retail Branch Server 4.3
    SUSE openSUSE Leap openSUSE Leap 15.4
    SUSE SUSE Linux Enterprise Desktop SUSE Linux Enterprise Desktop 15 SP7
    SUSE SUSE Linux Enterprise Live Patching SUSE Linux Enterprise Live Patching 15-SP7
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP4 LTSS
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP5
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro for Rancher 5.4
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server for SAP Applications 15 SP5
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro 5.3
    SUSE SUSE Linux Enterprise Real Time SUSE Linux Enterprise Real Time 15 SP5
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server for SAP applications 16.0
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro for Rancher 5.3
    SUSE SUSE Linux Enterprise Workstation Extension SUSE Linux Enterprise Workstation Extension 15 SP7
    SUSE SUSE Linux Enterprise Real Time SUSE Linux Enterprise Real Time 15 SP4
    SUSE SUSE Manager Proxy SUSE Manager Proxy 4.3
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server for SAP Applications 15 SP7
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server for SAP Applications 15 SP4
    SUSE Basesystem Module Basesystem Module 15-SP7
    SUSE SUSE Linux Enterprise High Availability Extension SUSE Linux Enterprise High Availability Extension 15 SP7
    SUSE SUSE Linux Micro SUSE Linux Micro 6.2
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro 5.5
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP4
    SUSE Legacy Module Legacy Module 15-SP7
    SUSE SUSE Linux Micro SUSE Linux Micro 6.0
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP7
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP5 LTSS
    SUSE SUSE Manager Server SUSE Manager Server 4.3
    SUSE Development Tools Module Development Tools Module 15-SP7
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro 5.4
    SUSE SUSE Linux Enterprise Live Patching SUSE Linux Enterprise Live Patching 15-SP4
    SUSE SUSE Linux Micro Extras SUSE Linux Micro Extras 6.0
    References
    Bulletin de sécurité SUSE SUSE-SU-2026:22436-1 2026-06-30 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22283-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22280-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22288-1 2026-06-26 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22433-1 2026-06-30 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22389-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22426-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22428-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22388-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22390-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22386-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22385-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2638-1 2026-06-26 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22278-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22387-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22393-1 2026-06-30 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22391-1 2026-06-26 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22276-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22427-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22383-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22394-1 2026-06-30 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22279-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2658-1 2026-06-26 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22384-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22282-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22425-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2722-1 2026-07-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22281-1 2026-06-25 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:22277-1 2026-06-25 vendor-advisory

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "Public Cloud Module 15-SP7",
          "product": {
            "name": "Public Cloud Module",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Availability Extension 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise High Availability Extension",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "openSUSE Leap 15.5",
          "product": {
            "name": "openSUSE Leap",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Live Patching 15-SP5",
          "product": {
            "name": "SUSE Linux Enterprise Live Patching",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Real Time 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise Real Time",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 16.0",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Manager Retail Branch Server 4.3",
          "product": {
            "name": "SUSE Manager Retail Branch Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "openSUSE Leap 15.4",
          "product": {
            "name": "openSUSE Leap",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Desktop 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise Desktop",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Live Patching 15-SP7",
          "product": {
            "name": "SUSE Linux Enterprise Live Patching",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP4 LTSS",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro for Rancher 5.4",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro 5.3",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Real Time 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise Real Time",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server for SAP applications 16.0",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro for Rancher 5.3",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Workstation Extension 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise Workstation Extension",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Real Time 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise Real Time",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Manager Proxy 4.3",
          "product": {
            "name": "SUSE Manager Proxy",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "Basesystem Module 15-SP7",
          "product": {
            "name": "Basesystem Module",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Availability Extension 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise High Availability Extension",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Micro 6.2",
          "product": {
            "name": "SUSE Linux Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro 5.5",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "Legacy Module 15-SP7",
          "product": {
            "name": "Legacy Module",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Micro 6.0",
          "product": {
            "name": "SUSE Linux Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP5 LTSS",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Manager Server 4.3",
          "product": {
            "name": "SUSE Manager Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "Development Tools Module 15-SP7",
          "product": {
            "name": "Development Tools Module",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro 5.4",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Live Patching 15-SP4",
          "product": {
            "name": "SUSE Linux Enterprise Live Patching",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Micro Extras 6.0",
          "product": {
            "name": "SUSE Linux Micro Extras",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2026-43198",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43198"
        },
        {
          "name": "CVE-2026-45842",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45842"
        },
        {
          "name": "CVE-2025-68324",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-68324"
        },
        {
          "name": "CVE-2026-43366",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43366"
        },
        {
          "name": "CVE-2026-43068",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43068"
        },
        {
          "name": "CVE-2026-46119",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46119"
        },
        {
          "name": "CVE-2026-43414",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43414"
        },
        {
          "name": "CVE-2026-31493",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31493"
        },
        {
          "name": "CVE-2026-43413",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43413"
        },
        {
          "name": "CVE-2026-31402",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31402"
        },
        {
          "name": "CVE-2026-45852",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45852"
        },
        {
          "name": "CVE-2026-43483",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43483"
        },
        {
          "name": "CVE-2026-31758",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31758"
        },
        {
          "name": "CVE-2026-45856",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45856"
        },
        {
          "name": "CVE-2026-43119",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43119"
        },
        {
          "name": "CVE-2026-43470",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43470"
        },
        {
          "name": "CVE-2026-46227",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46227"
        },
        {
          "name": "CVE-2026-43455",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43455"
        },
        {
          "name": "CVE-2026-31453",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31453"
        },
        {
          "name": "CVE-2026-31593",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31593"
        },
        {
          "name": "CVE-2026-23438",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23438"
        },
        {
          "name": "CVE-2026-45910",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45910"
        },
        {
          "name": "CVE-2026-31405",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31405"
        },
        {
          "name": "CVE-2026-43339",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43339"
        },
        {
          "name": "CVE-2026-43054",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43054"
        },
        {
          "name": "CVE-2026-31698",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31698"
        },
        {
          "name": "CVE-2026-31664",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31664"
        },
        {
          "name": "CVE-2026-31473",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31473"
        },
        {
          "name": "CVE-2026-31448",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31448"
        },
        {
          "name": "CVE-2026-31752",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31752"
        },
        {
          "name": "CVE-2026-23303",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23303"
        },
        {
          "name": "CVE-2026-31396",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31396"
        },
        {
          "name": "CVE-2026-31680",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31680"
        },
        {
          "name": "CVE-2026-31613",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31613"
        },
        {
          "name": "CVE-2026-46114",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46114"
        },
        {
          "name": "CVE-2026-43411",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43411"
        },
        {
          "name": "CVE-2026-43284",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43284"
        },
        {
          "name": "CVE-2026-43362",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43362"
        },
        {
          "name": "CVE-2026-43052",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43052"
        },
        {
          "name": "CVE-2026-43053",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43053"
        },
        {
          "name": "CVE-2026-31655",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31655"
        },
        {
          "name": "CVE-2026-45870",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45870"
        },
        {
          "name": "CVE-2026-43028",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43028"
        },
        {
          "name": "CVE-2026-31614",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31614"
        },
        {
          "name": "CVE-2026-46113",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46113"
        },
        {
          "name": "CVE-2026-3150",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3150"
        },
        {
          "name": "CVE-2026-45841",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45841"
        },
        {
          "name": "CVE-2026-46159",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46159"
        },
        {
          "name": "CVE-2026-31546",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31546"
        },
        {
          "name": "CVE-2026-46209",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46209"
        },
        {
          "name": "CVE-2026-31516",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31516"
        },
        {
          "name": "CVE-2026-43023",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43023"
        },
        {
          "name": "CVE-2026-43345",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43345"
        },
        {
          "name": "CVE-2026-43503",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43503"
        },
        {
          "name": "CVE-2026-46101",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46101"
        },
        {
          "name": "CVE-2026-46024",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46024"
        },
        {
          "name": "CVE-2025-68822",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-68822"
        },
        {
          "name": "CVE-2026-46037",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46037"
        },
        {
          "name": "CVE-2026-46116",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46116"
        },
        {
          "name": "CVE-2026-46083",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46083"
        },
        {
          "name": "CVE-2026-43030",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43030"
        },
        {
          "name": "CVE-2026-43074",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43074"
        },
        {
          "name": "CVE-2026-46259",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46259"
        },
        {
          "name": "CVE-2026-31703",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31703"
        },
        {
          "name": "CVE-2026-46176",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46176"
        },
        {
          "name": "CVE-2026-31693",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31693"
        },
        {
          "name": "CVE-2026-45846",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45846"
        },
        {
          "name": "CVE-2026-43499",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43499"
        },
        {
          "name": "CVE-2026-45862",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45862"
        },
        {
          "name": "CVE-2026-43036",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43036"
        },
        {
          "name": "CVE-2026-46005",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46005"
        },
        {
          "name": "CVE-2026-31697",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31697"
        },
        {
          "name": "CVE-2026-45894",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45894"
        },
        {
          "name": "CVE-2026-23359",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23359"
        },
        {
          "name": "CVE-2026-46323",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46323"
        },
        {
          "name": "CVE-2026-46181",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46181"
        },
        {
          "name": "CVE-2026-31469",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31469"
        },
        {
          "name": "CVE-2026-46043",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46043"
        },
        {
          "name": "CVE-2026-46120",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46120"
        },
        {
          "name": "CVE-2026-31555",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31555"
        },
        {
          "name": "CVE-2026-43491",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43491"
        },
        {
          "name": "CVE-2026-46197",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46197"
        },
        {
          "name": "CVE-2026-43249",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43249"
        },
        {
          "name": "CVE-2026-43252",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43252"
        },
        {
          "name": "CVE-2026-31759",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31759"
        },
        {
          "name": "CVE-2026-43360",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43360"
        },
        {
          "name": "CVE-2026-45878",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45878"
        },
        {
          "name": "CVE-2026-45932",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45932"
        },
        {
          "name": "CVE-2026-45940",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45940"
        },
        {
          "name": "CVE-2025-10263",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-10263"
        },
        {
          "name": "CVE-2026-31671",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31671"
        },
        {
          "name": "CVE-2026-43024",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43024"
        },
        {
          "name": "CVE-2026-31694",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31694"
        },
        {
          "name": "CVE-2026-31554",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31554"
        },
        {
          "name": "CVE-2026-31699",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31699"
        },
        {
          "name": "CVE-2026-43077",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43077"
        },
        {
          "name": "CVE-2026-43407",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43407"
        },
        {
          "name": "CVE-2026-43026",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43026"
        },
        {
          "name": "CVE-2026-31480",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31480"
        },
        {
          "name": "CVE-2026-43405",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43405"
        },
        {
          "name": "CVE-2026-46150",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46150"
        },
        {
          "name": "CVE-2026-46090",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46090"
        },
        {
          "name": "CVE-2026-45840",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45840"
        },
        {
          "name": "CVE-2026-46300",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46300"
        },
        {
          "name": "CVE-2026-43361",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43361"
        },
        {
          "name": "CVE-2026-43035",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43035"
        },
        {
          "name": "CVE-2026-46172",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46172"
        },
        {
          "name": "CVE-2026-31429",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31429"
        },
        {
          "name": "CVE-2026-31665",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31665"
        },
        {
          "name": "CVE-2026-43261",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43261"
        },
        {
          "name": "CVE-2026-23444",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23444"
        },
        {
          "name": "CVE-2026-45886",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45886"
        },
        {
          "name": "CVE-2026-45961",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45961"
        },
        {
          "name": "CVE-2026-46110",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46110"
        },
        {
          "name": "CVE-2026-43158",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43158"
        },
        {
          "name": "CVE-2026-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43501"
        },
        {
          "name": "CVE-2026-43059",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43059"
        },
        {
          "name": "CVE-2026-46111",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46111"
        },
        {
          "name": "CVE-2026-31592",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31592"
        },
        {
          "name": "CVE-2026-45984",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45984"
        },
        {
          "name": "CVE-2026-31518",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31518"
        },
        {
          "name": "CVE-2026-43296",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43296"
        },
        {
          "name": "CVE-2026-23392",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23392"
        },
        {
          "name": "CVE-2026-31771",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31771"
        },
        {
          "name": "CVE-2026-31504",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31504"
        },
        {
          "name": "CVE-2026-43066",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43066"
        },
        {
          "name": "CVE-2026-45970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45970"
        },
        {
          "name": "CVE-2026-43469",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43469"
        },
        {
          "name": "CVE-2026-31590",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31590"
        },
        {
          "name": "CVE-2026-31767",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31767"
        },
        {
          "name": "CVE-2025-38549",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-38549"
        },
        {
          "name": "CVE-2025-54518",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54518"
        },
        {
          "name": "CVE-2026-31414",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31414"
        },
        {
          "name": "CVE-2026-46244",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46244"
        },
        {
          "name": "CVE-2026-43040",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43040"
        },
        {
          "name": "CVE-2026-23278",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23278"
        },
        {
          "name": "CVE-2026-43206",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43206"
        },
        {
          "name": "CVE-2026-43065",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43065"
        },
        {
          "name": "CVE-2026-45843",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45843"
        },
        {
          "name": "CVE-2026-43406",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43406"
        },
        {
          "name": "CVE-2026-45964",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45964"
        },
        {
          "name": "CVE-2026-46004",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46004"
        },
        {
          "name": "CVE-2026-46094",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46094"
        },
        {
          "name": "CVE-2026-43187",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43187"
        },
        {
          "name": "CVE-2026-43341",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43341"
        },
        {
          "name": "CVE-2026-43239",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43239"
        },
        {
          "name": "CVE-2026-31495",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31495"
        },
        {
          "name": "CVE-2026-46160",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46160"
        },
        {
          "name": "CVE-2026-46079",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46079"
        },
        {
          "name": "CVE-2026-46333",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46333"
        },
        {
          "name": "CVE-2026-31492",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31492"
        },
        {
          "name": "CVE-2026-46021",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46021"
        },
        {
          "name": "CVE-2026-46162",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46162"
        },
        {
          "name": "CVE-2026-31596",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31596"
        },
        {
          "name": "CVE-2026-43112",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43112"
        },
        {
          "name": "CVE-2026-43083",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43083"
        },
        {
          "name": "CVE-2026-46273",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46273"
        },
        {
          "name": "CVE-2026-31674",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31674"
        },
        {
          "name": "CVE-2026-43109",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43109"
        },
        {
          "name": "CVE-2026-31560",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31560"
        },
        {
          "name": "CVE-2026-43101",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43101"
        },
        {
          "name": "CVE-2026-31678",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31678"
        },
        {
          "name": "CVE-2026-43338",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43338"
        },
        {
          "name": "CVE-2026-43234",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43234"
        },
        {
          "name": "CVE-2026-43359",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43359"
        },
        {
          "name": "CVE-2026-31455",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31455"
        },
        {
          "name": "CVE-2026-23327",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23327"
        },
        {
          "name": "CVE-2026-31446",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31446"
        },
        {
          "name": "CVE-2026-31464",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31464"
        },
        {
          "name": "CVE-2026-31500",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31500"
        },
        {
          "name": "CVE-2026-43171",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43171"
        },
        {
          "name": "CVE-2026-43333",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43333"
        },
        {
          "name": "CVE-2026-43049",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43049"
        },
        {
          "name": "CVE-2026-45983",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45983"
        },
        {
          "name": "CVE-2026-46123",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46123"
        },
        {
          "name": "CVE-2026-46157",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46157"
        },
        {
          "name": "CVE-2026-43325",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43325"
        },
        {
          "name": "CVE-2026-45974",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45974"
        },
        {
          "name": "CVE-2026-45965",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45965"
        },
        {
          "name": "CVE-2026-43013",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43013"
        },
        {
          "name": "CVE-2026-31454",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31454"
        },
        {
          "name": "CVE-2026-31452",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31452"
        },
        {
          "name": "CVE-2026-31499",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31499"
        },
        {
          "name": "CVE-2026-31629",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31629"
        },
        {
          "name": "CVE-2026-31673",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31673"
        }
      ],
      "initial_release_date": "2026-07-03T00:00:00",
      "last_revision_date": "2026-07-03T00:00:00",
      "links": [],
      "reference": "CERTFR-2026-AVI-0833",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2026-07-03T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
        },
        {
          "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
        },
        {
          "description": "D\u00e9ni de service"
        },
        {
          "description": "Contournement de la politique de s\u00e9curit\u00e9"
        },
        {
          "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
        },
        {
          "description": "\u00c9l\u00e9vation de privil\u00e8ges"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
      "vendor_advisories": [
        {
          "published_at": "2026-06-30",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22436-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622436-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22283-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622283-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22280-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622280-1"
        },
        {
          "published_at": "2026-06-26",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22288-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622288-1"
        },
        {
          "published_at": "2026-06-30",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22433-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622433-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22389-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622389-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22426-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622426-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22428-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622428-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22388-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622388-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22390-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622390-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22386-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622386-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22385-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622385-1"
        },
        {
          "published_at": "2026-06-26",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2638-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262638-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22278-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622278-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22387-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622387-1"
        },
        {
          "published_at": "2026-06-30",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22393-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622393-1"
        },
        {
          "published_at": "2026-06-26",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22391-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622391-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22276-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622276-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22427-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622427-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22383-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622383-1"
        },
        {
          "published_at": "2026-06-30",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22394-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622394-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22279-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622279-1"
        },
        {
          "published_at": "2026-06-26",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2658-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262658-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22384-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622384-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22282-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622282-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22425-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622425-1"
        },
        {
          "published_at": "2026-07-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2722-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262722-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22281-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622281-1"
        },
        {
          "published_at": "2026-06-25",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22277-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622277-1"
        }
      ]
    }

    CERTFR-2026-AVI-0745

    Vulnerability from certfr_avis - Published: 2026-06-12 - Updated: 2026-06-12

    De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    SUSE openSUSE Leap openSUSE Leap 15.5
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server for SAP Applications 15 SP6
    SUSE SUSE Linux Enterprise Live Patching SUSE Linux Enterprise Live Patching 15-SP6
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro for Rancher 5.4
    SUSE openSUSE Leap openSUSE Leap 15.6
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro 5.3
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server for SAP applications 16.0
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro for Rancher 5.3
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP6
    SUSE SUSE Linux Micro Extras SUSE Linux Micro Extras 6.2
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 11 SP4
    SUSE SUSE Linux Micro SUSE Linux Micro 6.2
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro 5.5
    SUSE SUSE Linux Enterprise Real Time SUSE Linux Enterprise Real Time 15 SP6
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP6 LTSS
    SUSE SUSE Linux Enterprise High Availability Extension SUSE Linux Enterprise High Availability Extension 15 SP6
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro 5.4
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "openSUSE Leap 15.5",
          "product": {
            "name": "openSUSE Leap",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Live Patching 15-SP6",
          "product": {
            "name": "SUSE Linux Enterprise Live Patching",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro for Rancher 5.4",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "openSUSE Leap 15.6",
          "product": {
            "name": "openSUSE Leap",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro 5.3",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server for SAP applications 16.0",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro for Rancher 5.3",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP6",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Micro Extras 6.2",
          "product": {
            "name": "SUSE Linux Micro Extras",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 11 SP4",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Micro 6.2",
          "product": {
            "name": "SUSE Linux Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro 5.5",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Real Time 15 SP6",
          "product": {
            "name": "SUSE Linux Enterprise Real Time",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP6 LTSS",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Availability Extension 15 SP6",
          "product": {
            "name": "SUSE Linux Enterprise High Availability Extension",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro 5.4",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2026-31483",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31483"
        },
        {
          "name": "CVE-2026-43414",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43414"
        },
        {
          "name": "CVE-2026-31493",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31493"
        },
        {
          "name": "CVE-2026-31402",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31402"
        },
        {
          "name": "CVE-2026-45852",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45852"
        },
        {
          "name": "CVE-2026-31758",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31758"
        },
        {
          "name": "CVE-2026-31685",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31685"
        },
        {
          "name": "CVE-2026-45910",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45910"
        },
        {
          "name": "CVE-2026-31405",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31405"
        },
        {
          "name": "CVE-2026-43054",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43054"
        },
        {
          "name": "CVE-2023-20585",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-20585"
        },
        {
          "name": "CVE-2026-31473",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31473"
        },
        {
          "name": "CVE-2026-31613",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31613"
        },
        {
          "name": "CVE-2026-46114",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46114"
        },
        {
          "name": "CVE-2026-23380",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23380"
        },
        {
          "name": "CVE-2026-43284",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43284"
        },
        {
          "name": "CVE-2026-43362",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43362"
        },
        {
          "name": "CVE-2026-23271",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23271"
        },
        {
          "name": "CVE-2026-31614",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31614"
        },
        {
          "name": "CVE-2026-46113",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46113"
        },
        {
          "name": "CVE-2026-3150",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3150"
        },
        {
          "name": "CVE-2026-31568",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31568"
        },
        {
          "name": "CVE-2026-31516",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31516"
        },
        {
          "name": "CVE-2026-23317",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23317"
        },
        {
          "name": "CVE-2026-43012",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43012"
        },
        {
          "name": "CVE-2026-43503",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43503"
        },
        {
          "name": "CVE-2026-43009",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43009"
        },
        {
          "name": "CVE-2026-43499",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43499"
        },
        {
          "name": "CVE-2026-23359",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23359"
        },
        {
          "name": "CVE-2026-46043",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46043"
        },
        {
          "name": "CVE-2026-43252",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43252"
        },
        {
          "name": "CVE-2026-23437",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23437"
        },
        {
          "name": "CVE-2026-46243",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46243"
        },
        {
          "name": "CVE-2026-43360",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43360"
        },
        {
          "name": "CVE-2026-43328",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43328"
        },
        {
          "name": "CVE-2026-31480",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31480"
        },
        {
          "name": "CVE-2026-43437",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43437"
        },
        {
          "name": "CVE-2026-46300",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46300"
        },
        {
          "name": "CVE-2026-43361",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43361"
        },
        {
          "name": "CVE-2026-23444",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23444"
        },
        {
          "name": "CVE-2026-31406",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31406"
        },
        {
          "name": "CVE-2026-46110",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46110"
        },
        {
          "name": "CVE-2026-43501",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43501"
        },
        {
          "name": "CVE-2026-23243",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23243"
        },
        {
          "name": "CVE-2026-31521",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31521"
        },
        {
          "name": "CVE-2026-43126",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43126"
        },
        {
          "name": "CVE-2026-31607",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31607"
        },
        {
          "name": "CVE-2026-45970",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45970"
        },
        {
          "name": "CVE-2026-23274",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23274"
        },
        {
          "name": "CVE-2025-54518",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54518"
        },
        {
          "name": "CVE-2026-43206",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43206"
        },
        {
          "name": "CVE-2026-43190",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43190"
        },
        {
          "name": "CVE-2026-45843",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-45843"
        },
        {
          "name": "CVE-2026-46004",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46004"
        },
        {
          "name": "CVE-2026-31736",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31736"
        },
        {
          "name": "CVE-2026-43341",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43341"
        },
        {
          "name": "CVE-2026-46333",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46333"
        },
        {
          "name": "CVE-2026-43037",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43037"
        },
        {
          "name": "CVE-2026-46021",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46021"
        },
        {
          "name": "CVE-2026-43112",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43112"
        },
        {
          "name": "CVE-2026-31575",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31575"
        },
        {
          "name": "CVE-2026-43338",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43338"
        },
        {
          "name": "CVE-2026-43234",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43234"
        },
        {
          "name": "CVE-2026-43359",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43359"
        },
        {
          "name": "CVE-2026-31729",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31729"
        },
        {
          "name": "CVE-2026-31464",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31464"
        },
        {
          "name": "CVE-2026-43333",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43333"
        },
        {
          "name": "CVE-2026-43325",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43325"
        },
        {
          "name": "CVE-2026-43013",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43013"
        },
        {
          "name": "CVE-2026-31629",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31629"
        }
      ],
      "initial_release_date": "2026-06-12T00:00:00",
      "last_revision_date": "2026-06-12T00:00:00",
      "links": [],
      "reference": "CERTFR-2026-AVI-0745",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2026-06-12T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
        },
        {
          "description": "Ex\u00e9cution de code arbitraire"
        },
        {
          "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
        },
        {
          "description": "D\u00e9ni de service"
        },
        {
          "description": "Contournement de la politique de s\u00e9curit\u00e9"
        },
        {
          "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
      "vendor_advisories": [
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22037-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622037-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22040-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622040-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22038-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622038-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22035-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622035-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22039-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622039-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22042-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622042-1"
        },
        {
          "published_at": "2026-06-10",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2332-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262332-1"
        },
        {
          "published_at": "2026-06-09",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2317-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262317-1"
        },
        {
          "published_at": "2026-06-05",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22043-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622043-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22036-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622036-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22031-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622031-1"
        },
        {
          "published_at": "2026-06-05",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22048-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622048-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22032-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622032-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22034-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622034-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:22033-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622033-1"
        },
        {
          "published_at": "2026-06-10",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2331-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262331-1"
        },
        {
          "published_at": "2026-06-09",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2310-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262310-1"
        }
      ]
    }

    CERTFR-2026-AVI-0697

    Vulnerability from certfr_avis - Published: 2026-06-05 - Updated: 2026-06-05

    De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données, une atteinte à l'intégrité des données et un contournement de la politique de sécurité.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    SUSE Public Cloud Module Public Cloud Module 15-SP7
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing 15 SP5
    SUSE SUSE Linux Enterprise High Availability Extension SUSE Linux Enterprise High Availability Extension 15 SP4
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
    SUSE openSUSE Leap openSUSE Leap 15.5
    SUSE SUSE Linux Enterprise Live Patching SUSE Linux Enterprise Live Patching 15-SP5
    SUSE SUSE Linux Enterprise Real Time SUSE Linux Enterprise Real Time 15 SP7
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing 12 SP5
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing 15 SP4
    SUSE SUSE Manager Retail Branch Server SUSE Manager Retail Branch Server 4.3
    SUSE SUSE Linux Enterprise Live Patching SUSE Linux Enterprise Live Patching 12-SP5
    SUSE openSUSE Leap openSUSE Leap 15.4
    SUSE SUSE Linux Enterprise Desktop SUSE Linux Enterprise Desktop 15 SP7
    SUSE SUSE Linux Enterprise Live Patching SUSE Linux Enterprise Live Patching 15-SP6
    SUSE SUSE Linux Enterprise Live Patching SUSE Linux Enterprise Live Patching 15-SP7
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 12 SP5
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP4 LTSS
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP5
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro for Rancher 5.4
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server for SAP Applications 15 SP5
    SUSE SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
    SUSE openSUSE Leap openSUSE Leap 15.6
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro 5.3
    SUSE SUSE Linux Enterprise Real Time SUSE Linux Enterprise Real Time 15 SP5
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro for Rancher 5.3
    SUSE SUSE Linux Enterprise Workstation Extension SUSE Linux Enterprise Workstation Extension 15 SP7
    SUSE SUSE Linux Enterprise Real Time SUSE Linux Enterprise Real Time 15 SP4
    SUSE SUSE Manager Proxy SUSE Manager Proxy 4.3
    SUSE SUSE Linux Micro Extras SUSE Linux Micro Extras 6.2
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server for SAP Applications 15 SP7
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server for SAP Applications 15 SP4
    SUSE Basesystem Module Basesystem Module 15-SP7
    SUSE SUSE Linux Enterprise High Availability Extension SUSE Linux Enterprise High Availability Extension 15 SP7
    SUSE SUSE Linux Micro SUSE Linux Micro 6.2
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro 5.5
    SUSE SUSE Linux Enterprise Real Time SUSE Linux Enterprise Real Time 15 SP6
    SUSE SUSE Linux Micro SUSE Linux Micro 6.1
    SUSE Legacy Module Legacy Module 15-SP7
    SUSE SUSE Linux Micro SUSE Linux Micro 6.0
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP7
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP5 LTSS
    SUSE SUSE Manager Server SUSE Manager Server 4.3
    SUSE SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15 SP6 LTSS
    SUSE SUSE Real Time Module SUSE Real Time Module 15-SP7
    SUSE Development Tools Module Development Tools Module 15-SP7
    SUSE SUSE Linux Enterprise High Availability Extension SUSE Linux Enterprise High Availability Extension 15 SP6
    SUSE SUSE Linux Enterprise Micro SUSE Linux Enterprise Micro 5.4
    SUSE SUSE Linux Enterprise Live Patching SUSE Linux Enterprise Live Patching 15-SP4
    References
    Bulletin de sécurité SUSE SUSE-SU-2026:21930-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21841-1 2026-05-28 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2238-1 2026-06-03 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21974-1 2026-06-02 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2217-1 2026-06-02 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21979-1 2026-06-02 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2149-1 2026-05-31 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2158-1 2026-05-31 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21973-1 2026-06-02 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2189-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2159-1 2026-05-31 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21942-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21964-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21939-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2202-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21910-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2134-1 2026-05-29 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2137-1 2026-05-30 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21963-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21978-1 2026-06-02 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2191-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21972-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2207-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21969-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21983-1 2026-06-02 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21982-1 2026-06-02 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2141-1 2026-05-31 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21936-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2148-1 2026-05-31 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2131-1 2026-05-29 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2133-1 2026-05-29 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21968-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21909-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2176-1 2026-05-31 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21941-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21932-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21929-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2212-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2153-1 2026-05-31 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2199-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2168-1 2026-05-31 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21940-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2178-1 2026-05-31 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2181-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2200-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2214-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21938-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2216-1 2026-06-02 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21931-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21933-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21896-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2111-1 2026-05-29 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2172-1 2026-05-31 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21975-1 2026-06-02 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21971-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21935-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21937-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2215-1 2026-06-02 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21834-1 2026-05-28 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21962-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21970-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:21934-1 2026-06-01 vendor-advisory
    Bulletin de sécurité SUSE SUSE-SU-2026:2195-1 2026-06-01 vendor-advisory

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "Public Cloud Module 15-SP7",
          "product": {
            "name": "Public Cloud Module",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Availability Extension 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise High Availability Extension",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "openSUSE Leap 15.5",
          "product": {
            "name": "openSUSE Leap",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Live Patching 15-SP5",
          "product": {
            "name": "SUSE Linux Enterprise Live Patching",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Real Time 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise Real Time",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Manager Retail Branch Server 4.3",
          "product": {
            "name": "SUSE Manager Retail Branch Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Live Patching 12-SP5",
          "product": {
            "name": "SUSE Linux Enterprise Live Patching",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "openSUSE Leap 15.4",
          "product": {
            "name": "openSUSE Leap",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Desktop 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise Desktop",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Live Patching 15-SP6",
          "product": {
            "name": "SUSE Linux Enterprise Live Patching",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Live Patching 15-SP7",
          "product": {
            "name": "SUSE Linux Enterprise Live Patching",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 12 SP5",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP4 LTSS",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro for Rancher 5.4",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Performance Computing LTSS 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise High Performance Computing",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "openSUSE Leap 15.6",
          "product": {
            "name": "openSUSE Leap",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro 5.3",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Real Time 15 SP5",
          "product": {
            "name": "SUSE Linux Enterprise Real Time",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro for Rancher 5.3",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Workstation Extension 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise Workstation Extension",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Real Time 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise Real Time",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Manager Proxy 4.3",
          "product": {
            "name": "SUSE Manager Proxy",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Micro Extras 6.2",
          "product": {
            "name": "SUSE Linux Micro Extras",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "Basesystem Module 15-SP7",
          "product": {
            "name": "Basesystem Module",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Availability Extension 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise High Availability Extension",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Micro 6.2",
          "product": {
            "name": "SUSE Linux Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro 5.5",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Real Time 15 SP6",
          "product": {
            "name": "SUSE Linux Enterprise Real Time",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Micro 6.1",
          "product": {
            "name": "SUSE Linux Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "Legacy Module 15-SP7",
          "product": {
            "name": "Legacy Module",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Micro 6.0",
          "product": {
            "name": "SUSE Linux Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP7",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP5 LTSS",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Manager Server 4.3",
          "product": {
            "name": "SUSE Manager Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Server 15 SP6 LTSS",
          "product": {
            "name": "SUSE Linux Enterprise Server",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Real Time Module 15-SP7",
          "product": {
            "name": "SUSE Real Time Module",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "Development Tools Module 15-SP7",
          "product": {
            "name": "Development Tools Module",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise High Availability Extension 15 SP6",
          "product": {
            "name": "SUSE Linux Enterprise High Availability Extension",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Micro 5.4",
          "product": {
            "name": "SUSE Linux Enterprise Micro",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        },
        {
          "description": "SUSE Linux Enterprise Live Patching 15-SP4",
          "product": {
            "name": "SUSE Linux Enterprise Live Patching",
            "vendor": {
              "name": "SUSE",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2026-43366",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43366"
        },
        {
          "name": "CVE-2026-23260",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23260"
        },
        {
          "name": "CVE-2026-23447",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23447"
        },
        {
          "name": "CVE-2026-23387",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23387"
        },
        {
          "name": "CVE-2026-31658",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31658"
        },
        {
          "name": "CVE-2026-23318",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23318"
        },
        {
          "name": "CVE-2026-23368",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23368"
        },
        {
          "name": "CVE-2026-23475",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23475"
        },
        {
          "name": "CVE-2026-31402",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31402"
        },
        {
          "name": "CVE-2025-40219",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-40219"
        },
        {
          "name": "CVE-2026-23426",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23426"
        },
        {
          "name": "CVE-2026-23450",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23450"
        },
        {
          "name": "CVE-2026-31435",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31435"
        },
        {
          "name": "CVE-2026-43060",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43060"
        },
        {
          "name": "CVE-2026-31685",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31685"
        },
        {
          "name": "CVE-2026-23269",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23269"
        },
        {
          "name": "CVE-2026-31416",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31416"
        },
        {
          "name": "CVE-2026-31656",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31656"
        },
        {
          "name": "CVE-2026-31453",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31453"
        },
        {
          "name": "CVE-2026-23463",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23463"
        },
        {
          "name": "CVE-2026-23454",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23454"
        },
        {
          "name": "CVE-2026-31405",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31405"
        },
        {
          "name": "CVE-2026-23346",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23346"
        },
        {
          "name": "CVE-2026-23465",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23465"
        },
        {
          "name": "CVE-2023-20585",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-20585"
        },
        {
          "name": "CVE-2026-31528",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31528"
        },
        {
          "name": "CVE-2026-31550",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31550"
        },
        {
          "name": "CVE-2026-23290",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23290"
        },
        {
          "name": "CVE-2026-31787",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31787"
        },
        {
          "name": "CVE-2026-31456",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31456"
        },
        {
          "name": "CVE-2026-23468",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23468"
        },
        {
          "name": "CVE-2026-31691",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31691"
        },
        {
          "name": "CVE-2026-23461",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23461"
        },
        {
          "name": "CVE-2026-43044",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43044"
        },
        {
          "name": "CVE-2026-31586",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31586"
        },
        {
          "name": "CVE-2026-23340",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23340"
        },
        {
          "name": "CVE-2026-31738",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31738"
        },
        {
          "name": "CVE-2026-23441",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23441"
        },
        {
          "name": "CVE-2026-23383",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23383"
        },
        {
          "name": "CVE-2026-23412",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23412"
        },
        {
          "name": "CVE-2026-31547",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31547"
        },
        {
          "name": "CVE-2026-23253",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23253"
        },
        {
          "name": "CVE-2026-43025",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43025"
        },
        {
          "name": "CVE-2026-23271",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23271"
        },
        {
          "name": "CVE-2025-68265",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-68265"
        },
        {
          "name": "CVE-2026-23434",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23434"
        },
        {
          "name": "CVE-2026-23268",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23268"
        },
        {
          "name": "CVE-2025-68310",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-68310"
        },
        {
          "name": "CVE-2026-23443",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23443"
        },
        {
          "name": "CVE-2026-23470",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23470"
        },
        {
          "name": "CVE-2026-23418",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23418"
        },
        {
          "name": "CVE-2026-23304",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23304"
        },
        {
          "name": "CVE-2026-23357",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23357"
        },
        {
          "name": "CVE-2026-23407",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23407"
        },
        {
          "name": "CVE-2026-31408",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31408"
        },
        {
          "name": "CVE-2026-31505",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31505"
        },
        {
          "name": "CVE-2026-31668",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31668"
        },
        {
          "name": "CVE-2026-23209",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23209"
        },
        {
          "name": "CVE-2026-43153",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43153"
        },
        {
          "name": "CVE-2026-23324",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23324"
        },
        {
          "name": "CVE-2026-23236",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23236"
        },
        {
          "name": "CVE-2026-23347",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23347"
        },
        {
          "name": "CVE-2026-23373",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23373"
        },
        {
          "name": "CVE-2026-23317",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23317"
        },
        {
          "name": "CVE-2026-31389",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31389"
        },
        {
          "name": "CVE-2026-31394",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31394"
        },
        {
          "name": "CVE-2026-31681",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31681"
        },
        {
          "name": "CVE-2026-23456",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23456"
        },
        {
          "name": "CVE-2026-31622",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31622"
        },
        {
          "name": "CVE-2026-23264",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23264"
        },
        {
          "name": "CVE-2026-23457",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23457"
        },
        {
          "name": "CVE-2026-43503",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43503"
        },
        {
          "name": "CVE-2026-31496",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31496"
        },
        {
          "name": "CVE-2026-43009",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43009"
        },
        {
          "name": "CVE-2026-23399",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23399"
        },
        {
          "name": "CVE-2026-23334",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23334"
        },
        {
          "name": "CVE-2026-31420",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31420"
        },
        {
          "name": "CVE-2026-23408",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23408"
        },
        {
          "name": "CVE-2026-23401",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23401"
        },
        {
          "name": "CVE-2026-31525",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31525"
        },
        {
          "name": "CVE-2026-43500",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43500"
        },
        {
          "name": "CVE-2026-31588",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31588"
        },
        {
          "name": "CVE-2026-43334",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43334"
        },
        {
          "name": "CVE-2026-23391",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23391"
        },
        {
          "name": "CVE-2026-31415",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31415"
        },
        {
          "name": "CVE-2026-23406",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23406"
        },
        {
          "name": "CVE-2026-23462",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23462"
        },
        {
          "name": "CVE-2026-23273",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23273"
        },
        {
          "name": "CVE-2026-23372",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23372"
        },
        {
          "name": "CVE-2026-31494",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31494"
        },
        {
          "name": "CVE-2026-31565",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31565"
        },
        {
          "name": "CVE-2026-23279",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23279"
        },
        {
          "name": "CVE-2026-23466",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23466"
        },
        {
          "name": "CVE-2026-23240",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23240"
        },
        {
          "name": "CVE-2026-23473",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23473"
        },
        {
          "name": "CVE-2026-23246",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23246"
        },
        {
          "name": "CVE-2026-31422",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31422"
        },
        {
          "name": "CVE-2026-31533",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31533"
        },
        {
          "name": "CVE-2026-23298",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23298"
        },
        {
          "name": "CVE-2026-31449",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31449"
        },
        {
          "name": "CVE-2026-31427",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31427"
        },
        {
          "name": "CVE-2026-31392",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31392"
        },
        {
          "name": "CVE-2026-23360",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23360"
        },
        {
          "name": "CVE-2026-31515",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31515"
        },
        {
          "name": "CVE-2026-23472",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23472"
        },
        {
          "name": "CVE-2026-23437",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23437"
        },
        {
          "name": "CVE-2024-14027",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-14027"
        },
        {
          "name": "CVE-2026-23308",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23308"
        },
        {
          "name": "CVE-2026-31684",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31684"
        },
        {
          "name": "CVE-2026-23396",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23396"
        },
        {
          "name": "CVE-2026-31423",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31423"
        },
        {
          "name": "CVE-2026-23262",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23262"
        },
        {
          "name": "CVE-2026-23370",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23370"
        },
        {
          "name": "CVE-2026-23315",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23315"
        },
        {
          "name": "CVE-2026-43419",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43419"
        },
        {
          "name": "CVE-2026-31669",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31669"
        },
        {
          "name": "CVE-2026-23239",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23239"
        },
        {
          "name": "CVE-2021-47103",
          "url": "https://www.cve.org/CVERecord?id=CVE-2021-47103"
        },
        {
          "name": "CVE-2026-31694",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31694"
        },
        {
          "name": "CVE-2026-31554",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31554"
        },
        {
          "name": "CVE-2026-23367",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23367"
        },
        {
          "name": "CVE-2026-31662",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31662"
        },
        {
          "name": "CVE-2026-43437",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43437"
        },
        {
          "name": "CVE-2026-23446",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23446"
        },
        {
          "name": "CVE-2026-46300",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46300"
        },
        {
          "name": "CVE-2026-31526",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31526"
        },
        {
          "name": "CVE-2026-23417",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23417"
        },
        {
          "name": "CVE-2026-43441",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43441"
        },
        {
          "name": "CVE-2025-71269",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-71269"
        },
        {
          "name": "CVE-2026-23300",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23300"
        },
        {
          "name": "CVE-2026-31406",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31406"
        },
        {
          "name": "CVE-2026-23243",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23243"
        },
        {
          "name": "CVE-2026-23410",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23410"
        },
        {
          "name": "CVE-2026-31675",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31675"
        },
        {
          "name": "CVE-2026-23363",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23363"
        },
        {
          "name": "CVE-2026-23445",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23445"
        },
        {
          "name": "CVE-2026-31412",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31412"
        },
        {
          "name": "CVE-2026-23362",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23362"
        },
        {
          "name": "CVE-2026-31421",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31421"
        },
        {
          "name": "CVE-2026-43365",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43365"
        },
        {
          "name": "CVE-2026-31470",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31470"
        },
        {
          "name": "CVE-2026-43126",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43126"
        },
        {
          "name": "CVE-2026-23392",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23392"
        },
        {
          "name": "CVE-2026-23245",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23245"
        },
        {
          "name": "CVE-2026-31403",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31403"
        },
        {
          "name": "CVE-2026-31400",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31400"
        },
        {
          "name": "CVE-2026-31512",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31512"
        },
        {
          "name": "CVE-2026-31504",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31504"
        },
        {
          "name": "CVE-2026-31607",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31607"
        },
        {
          "name": "CVE-2026-23237",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23237"
        },
        {
          "name": "CVE-2026-31679",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31679"
        },
        {
          "name": "CVE-2026-43120",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43120"
        },
        {
          "name": "CVE-2026-43265",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43265"
        },
        {
          "name": "CVE-2026-31404",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31404"
        },
        {
          "name": "CVE-2026-43330",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43330"
        },
        {
          "name": "CVE-2026-23274",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23274"
        },
        {
          "name": "CVE-2026-31417",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31417"
        },
        {
          "name": "CVE-2026-23448",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23448"
        },
        {
          "name": "CVE-2025-54518",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-54518"
        },
        {
          "name": "CVE-2025-71268",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-71268"
        },
        {
          "name": "CVE-2026-31426",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31426"
        },
        {
          "name": "CVE-2026-23354",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23354"
        },
        {
          "name": "CVE-2026-23325",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23325"
        },
        {
          "name": "CVE-2026-23405",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23405"
        },
        {
          "name": "CVE-2026-23440",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23440"
        },
        {
          "name": "CVE-2026-23403",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23403"
        },
        {
          "name": "CVE-2026-31488",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31488"
        },
        {
          "name": "CVE-2026-23397",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23397"
        },
        {
          "name": "CVE-2026-23452",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23452"
        },
        {
          "name": "CVE-2026-23474",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23474"
        },
        {
          "name": "CVE-2026-43190",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43190"
        },
        {
          "name": "CVE-2026-23343",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23343"
        },
        {
          "name": "CVE-2026-23336",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23336"
        },
        {
          "name": "CVE-2026-23168",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23168"
        },
        {
          "name": "CVE-2026-31682",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31682"
        },
        {
          "name": "CVE-2026-31570",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31570"
        },
        {
          "name": "CVE-2026-31395",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31395"
        },
        {
          "name": "CVE-2026-23455",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23455"
        },
        {
          "name": "CVE-2026-23316",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23316"
        },
        {
          "name": "CVE-2026-23261",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23261"
        },
        {
          "name": "CVE-2026-23335",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23335"
        },
        {
          "name": "CVE-2026-23369",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23369"
        },
        {
          "name": "CVE-2026-43110",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43110"
        },
        {
          "name": "CVE-2026-31507",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31507"
        },
        {
          "name": "CVE-2026-23266",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23266"
        },
        {
          "name": "CVE-2025-71302",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-71302"
        },
        {
          "name": "CVE-2026-46333",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-46333"
        },
        {
          "name": "CVE-2026-31411",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31411"
        },
        {
          "name": "CVE-2026-31428",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31428"
        },
        {
          "name": "CVE-2026-23420",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23420"
        },
        {
          "name": "CVE-2026-23411",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23411"
        },
        {
          "name": "CVE-2026-23449",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23449"
        },
        {
          "name": "CVE-2026-43037",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43037"
        },
        {
          "name": "CVE-2026-31666",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31666"
        },
        {
          "name": "CVE-2026-23409",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23409"
        },
        {
          "name": "CVE-2026-23442",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23442"
        },
        {
          "name": "CVE-2026-23393",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23393"
        },
        {
          "name": "CVE-2026-23458",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23458"
        },
        {
          "name": "CVE-2026-23313",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23313"
        },
        {
          "name": "CVE-2026-31649",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31649"
        },
        {
          "name": "CVE-2026-31393",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31393"
        },
        {
          "name": "CVE-2026-43027",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43027"
        },
        {
          "name": "CVE-2026-23339",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23339"
        },
        {
          "name": "CVE-2026-23404",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23404"
        },
        {
          "name": "CVE-2026-23436",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23436"
        },
        {
          "name": "CVE-2026-23321",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23321"
        },
        {
          "name": "CVE-2026-23460",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23460"
        },
        {
          "name": "CVE-2026-31678",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31678"
        },
        {
          "name": "CVE-2026-23395",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23395"
        },
        {
          "name": "CVE-2026-31503",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31503"
        },
        {
          "name": "CVE-2026-23306",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23306"
        },
        {
          "name": "CVE-2026-23374",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23374"
        },
        {
          "name": "CVE-2026-23378",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23378"
        },
        {
          "name": "CVE-2026-31519",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31519"
        },
        {
          "name": "CVE-2025-40181",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-40181"
        },
        {
          "name": "CVE-2026-23464",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23464"
        },
        {
          "name": "CVE-2026-43045",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43045"
        },
        {
          "name": "CVE-2026-23291",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23291"
        },
        {
          "name": "CVE-2026-31436",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31436"
        },
        {
          "name": "CVE-2026-23382",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23382"
        },
        {
          "name": "CVE-2026-43214",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43214"
        },
        {
          "name": "CVE-2026-43082",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43082"
        },
        {
          "name": "CVE-2026-31644",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31644"
        },
        {
          "name": "CVE-2026-31700",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31700"
        },
        {
          "name": "CVE-2026-23312",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23312"
        },
        {
          "name": "CVE-2026-23365",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23365"
        },
        {
          "name": "CVE-2026-23419",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23419"
        },
        {
          "name": "CVE-2026-43329",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43329"
        },
        {
          "name": "CVE-2026-31424",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31424"
        },
        {
          "name": "CVE-2026-23375",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23375"
        },
        {
          "name": "CVE-2026-23307",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23307"
        },
        {
          "name": "CVE-2025-71183",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-71183"
        },
        {
          "name": "CVE-2026-43038",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43038"
        },
        {
          "name": "CVE-2022-49979",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-49979"
        },
        {
          "name": "CVE-2026-31407",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31407"
        },
        {
          "name": "CVE-2026-31602",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31602"
        },
        {
          "name": "CVE-2026-31425",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31425"
        },
        {
          "name": "CVE-2025-71238",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-71238"
        },
        {
          "name": "CVE-2026-23276",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23276"
        },
        {
          "name": "CVE-2026-31579",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31579"
        },
        {
          "name": "CVE-2023-2058",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-2058"
        },
        {
          "name": "CVE-2026-23351",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-23351"
        },
        {
          "name": "CVE-2026-43050",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43050"
        },
        {
          "name": "CVE-2026-43088",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43088"
        },
        {
          "name": "CVE-2026-43494",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43494"
        }
      ],
      "initial_release_date": "2026-06-05T00:00:00",
      "last_revision_date": "2026-06-05T00:00:00",
      "links": [],
      "reference": "CERTFR-2026-AVI-0697",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2026-06-05T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
        },
        {
          "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
        },
        {
          "description": "D\u00e9ni de service"
        },
        {
          "description": "Contournement de la politique de s\u00e9curit\u00e9"
        },
        {
          "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et un contournement de la politique de s\u00e9curit\u00e9.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
      "vendor_advisories": [
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21930-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621930-1"
        },
        {
          "published_at": "2026-05-28",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21841-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621841-1"
        },
        {
          "published_at": "2026-06-03",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2238-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262238-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21974-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621974-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2217-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262217-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21979-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621979-1"
        },
        {
          "published_at": "2026-05-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2149-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262149-1"
        },
        {
          "published_at": "2026-05-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2158-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262158-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21973-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621973-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2189-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262189-1"
        },
        {
          "published_at": "2026-05-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2159-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262159-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21942-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621942-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21964-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621964-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21939-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621939-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2202-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262202-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21910-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621910-1"
        },
        {
          "published_at": "2026-05-29",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2134-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262134-1"
        },
        {
          "published_at": "2026-05-30",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2137-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262137-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21963-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621963-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21978-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621978-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2191-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262191-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21972-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621972-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2207-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262207-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21969-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621969-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21983-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621983-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21982-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621982-1"
        },
        {
          "published_at": "2026-05-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2141-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262141-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21936-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621936-1"
        },
        {
          "published_at": "2026-05-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2148-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262148-1"
        },
        {
          "published_at": "2026-05-29",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2131-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262131-1"
        },
        {
          "published_at": "2026-05-29",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2133-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262133-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21968-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621968-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21909-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621909-1"
        },
        {
          "published_at": "2026-05-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2176-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262176-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21941-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621941-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21932-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621932-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21929-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621929-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2212-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262212-1"
        },
        {
          "published_at": "2026-05-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2153-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262153-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2199-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262199-1"
        },
        {
          "published_at": "2026-05-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2168-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262168-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21940-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621940-1"
        },
        {
          "published_at": "2026-05-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2178-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262178-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2181-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262181-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2200-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262200-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2214-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262214-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21938-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621938-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2216-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262216-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21931-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621931-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21933-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621933-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21896-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621896-1"
        },
        {
          "published_at": "2026-05-29",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2111-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262111-1"
        },
        {
          "published_at": "2026-05-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2172-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262172-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21975-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621975-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21971-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621971-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21935-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621935-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21937-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621937-1"
        },
        {
          "published_at": "2026-06-02",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2215-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262215-1"
        },
        {
          "published_at": "2026-05-28",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21834-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621834-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21962-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621962-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21970-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621970-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21934-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621934-1"
        },
        {
          "published_at": "2026-06-01",
          "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:2195-1",
          "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262195-1"
        }
      ]
    }

    CVE-2026-44935 (GCVE-0-2026-44935)

    Vulnerability from nvd – Published: 2026-07-02 16:00 – Updated: 2026-07-03 03:56
    VLAI
    Title
    Rancher Fleet vulnerable to cross namespace secret disclosure via unvalidated `valuesFrom` references in Helm Deployer
    Summary
    Missing validation of "valuesFrom" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other tenants.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1287 - Improper validation of specified type of input
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 0.15.0 , < 0.15.2 (semver)
    Affected: 0.14.0 , < 0.14.6 (semver)
    Affected: 0.13.0 , < 0.13.11 (semver)
    Affected: 0.12.0 , < 0.12.15 (semver)
    Create a notification for this product.
    Date Public
    2026-05-28 15:26
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44935",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-02T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-03T03:56:15.397Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Fleett",
              "product": "Rancher",
              "repo": "https://github.com/rancher/fleet/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "0.15.2",
                  "status": "affected",
                  "version": "0.15.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.14.6",
                  "status": "affected",
                  "version": "0.14.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.13.11",
                  "status": "affected",
                  "version": "0.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.12.15",
                  "status": "affected",
                  "version": "0.12.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "datePublic": "2026-05-28T15:26:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003e\u003cbr\u003eMissing validation of \"valuesFrom\" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other tenants.\u003c/div\u003e"
                }
              ],
              "value": "Missing validation of \"valuesFrom\" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other tenants."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1287",
                  "description": "CWE-1287 Improper validation of specified type of input",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-02T16:01:11.745Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/fleet/security/advisories/GHSA-xr65-5cpm-g36x"
            }
          ],
          "source": {
            "discovery": "EXTERNAL"
          },
          "title": "Rancher Fleet vulnerable to cross namespace secret disclosure via unvalidated `valuesFrom` references in Helm Deployer",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44935",
        "datePublished": "2026-07-02T16:00:06.751Z",
        "dateReserved": "2026-05-08T12:29:48.967Z",
        "dateUpdated": "2026-07-03T03:56:15.397Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44941 (GCVE-0-2026-44941)

    Vulnerability from nvd – Published: 2026-07-02 15:19 – Updated: 2026-07-03 03:56
    VLAI
    Title
    libzypp path traversal via "keyhint" in repomd.xml
    Summary
    A relative path traversal in the "keyhint" option in repomd.xml parsing of libzypp before 17.38.12 can be used by attackers able to supply a malicious repository to inject or overwrite files in the target system as root.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Relative path traversal
    Assigner
    Impacted products
    Vendor Product Version
    SUSE libzypp Affected: 0 , < 17.38.12 (rpm)
    Create a notification for this product.
    Date Public
    2026-06-05 15:15
    Credits
    Trung Nguyen <trungnh@cystack.net>
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44941",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-02T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-03T03:56:13.912Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://bugzilla.suse.com/show_bug.cgi?id=1267426"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "libzypp",
              "product": "libzypp",
              "repo": "https://github.com/openSUSE/libzypp/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "17.38.12",
                  "status": "affected",
                  "version": "0",
                  "versionType": "rpm"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Trung Nguyen \u003ctrungnh@cystack.net\u003e"
            }
          ],
          "datePublic": "2026-06-05T15:15:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A relative path traversal in the \"keyhint\" option in repomd.xml parsing of libzypp before 17.38.12 can be used by attackers able to supply a malicious repository to inject or overwrite files in the target system as root."
                }
              ],
              "value": "A relative path traversal in the \"keyhint\" option in repomd.xml parsing of libzypp before 17.38.12 can be used by attackers able to supply a malicious repository to inject or overwrite files in the target system as root."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-165",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-165 File Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "CWE-23 Relative path traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-02T15:19:05.302Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://bugzilla.suse.com/show_bug.cgi?id=1267426"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openSUSE/libzypp/commit/294b1bad442d089ca671c5c03adc8031e3b29e04"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "libzypp path traversal via \"keyhint\" in repomd.xml",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44941",
        "datePublished": "2026-07-02T15:19:05.302Z",
        "dateReserved": "2026-05-08T12:29:48.968Z",
        "dateUpdated": "2026-07-03T03:56:13.912Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44948 (GCVE-0-2026-44948)

    Vulnerability from nvd – Published: 2026-06-30 15:12 – Updated: 2026-06-30 16:00
    VLAI
    Title
    Path Traversal in Rancher Fleet ImageScan GitRepo Path Handler
    Summary
    A path traversal vulnerability was found in Fleet's ImageScan subsystem in Rancher Fleet 0.12.0 up to 0.12.16, 0.13.0 up to 0.13.12, 0.14.0 up to 0.14.7 and 0.15.0 up to 0.15.3 could be used to traverse outside of the intended directory, causing a denial of service.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Relative path traversal
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 0.12.0 , < 0.12.16 (semver)
    Affected: 0.13.0 , < 0.13.12 (semver)
    Affected: 0.14.0 , < 0.14.7 (semver)
    Affected: 0.15.0 , < 0.15.3 (semver)
    Create a notification for this product.
    Date Public
    2026-06-29 15:08
    Credits
    Sergey Kanibor
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44948",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-30T15:59:49.142430Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T16:00:33.240Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Fleet",
              "product": "Rancher",
              "repo": "https://github.com/rancher/fleet/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "0.12.16",
                  "status": "affected",
                  "version": "0.12.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.13.12",
                  "status": "affected",
                  "version": "0.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.14.7",
                  "status": "affected",
                  "version": "0.14.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.15.3",
                  "status": "affected",
                  "version": "0.15.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Sergey Kanibor"
            }
          ],
          "datePublic": "2026-06-29T15:08:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A path traversal vulnerability was found in Fleet\u0027s ImageScan subsystem in Rancher Fleet 0.12.0 up to 0.12.16, 0.13.0 up to 0.13.12, 0.14.0 up to 0.14.7 and 0.15.0 up to 0.15.3 could be used to traverse outside of the intended directory, causing a denial of service."
                }
              ],
              "value": "A path traversal vulnerability was found in Fleet\u0027s ImageScan subsystem in Rancher Fleet 0.12.0 up to 0.12.16, 0.13.0 up to 0.13.12, 0.14.0 up to 0.14.7 and 0.15.0 up to 0.15.3 could be used to traverse outside of the intended directory, causing a denial of service."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-126",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-126 Path Traversal"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "CWE-23 Relative path traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T15:12:17.346Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/fleet/security/advisories/GHSA-c45g-6c2c-rj3p"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Path Traversal in Rancher Fleet ImageScan GitRepo Path Handler",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44948",
        "datePublished": "2026-06-30T15:12:17.346Z",
        "dateReserved": "2026-05-08T12:29:48.969Z",
        "dateUpdated": "2026-06-30T16:00:33.240Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44949 (GCVE-0-2026-44949)

    Vulnerability from nvd – Published: 2026-06-30 14:41 – Updated: 2026-06-30 15:10
    VLAI
    Title
    Unauthenticated namespace creation and RBAC injection via rancher-webhook FleetWorkspace mutating webhook
    Summary
    A Rancher FleetWorkspace admission path allowed side effects to occur in the Rancher webhook handler for versions 0.7.0 up to 0.7.10, 0.8.0 up to 0.8.7, 0.9.0 up to 0.9.6 and 0.10.0 up to 0.10.7. An unauthenticated attacker with network access to the in-cluster rancher-webhook service could submit a crafted admission payload and cause workspace-related Kubernetes objects to be created with attacker-chosen identity data.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing authentication for critical function
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 0.7.0 , < 0.7.10 (semver)
    Affected: 0.8.0 , < 0.8.7 (semver)
    Affected: 0.9.0 , < 0.9.6 (semver)
    Affected: 0.10.0 , < 0.10.7 (semver)
    Create a notification for this product.
    Date Public
    2026-06-29 14:27
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44949",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-30T15:10:07.132296Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T15:10:17.154Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Webhook",
              "product": "Rancher",
              "repo": "https://github.com/rancher/webhook/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "0.7.10",
                  "status": "affected",
                  "version": "0.7.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.8.7",
                  "status": "affected",
                  "version": "0.8.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.9.6",
                  "status": "affected",
                  "version": "0.9.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.10.7",
                  "status": "affected",
                  "version": "0.10.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "datePublic": "2026-06-29T14:27:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A Rancher FleetWorkspace admission path allowed side effects to occur in\n the Rancher webhook handler for versions 0.7.0 up to 0.7.10, 0.8.0 up to 0.8.7, 0.9.0 up to 0.9.6 and 0.10.0 up to 0.10.7. An unauthenticated attacker with network access to\n the in-cluster \u003ccode\u003erancher-webhook\u003c/code\u003e service\n could submit a crafted admission payload and cause workspace-related \nKubernetes objects to be created with attacker-chosen identity data."
                }
              ],
              "value": "A Rancher FleetWorkspace admission path allowed side effects to occur in\n the Rancher webhook handler for versions 0.7.0 up to 0.7.10, 0.8.0 up to 0.8.7, 0.9.0 up to 0.9.6 and 0.10.0 up to 0.10.7. An unauthenticated attacker with network access to\n the in-cluster rancher-webhook service\n could submit a crafted admission payload and cause workspace-related \nKubernetes objects to be created with attacker-chosen identity data."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306 Missing authentication for critical function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T14:41:34.007Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/webhook/security/advisories/GHSA-h83p-cq95-vph4"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Unauthenticated namespace creation and RBAC injection via rancher-webhook FleetWorkspace mutating webhook",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44949",
        "datePublished": "2026-06-30T14:41:34.007Z",
        "dateReserved": "2026-05-08T12:29:48.969Z",
        "dateUpdated": "2026-06-30T15:10:17.154Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44947 (GCVE-0-2026-44947)

    Vulnerability from nvd – Published: 2026-06-30 14:21 – Updated: 2026-06-30 15:03
    VLAI
    Title
    Stale PSA ClusterRoleBinding Persists After RoleTemplate Downgrade in Rancher
    Summary
    A missing clean-up in the legacy Project Role Template Binding (PRTB) reconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security Admission (PSA) permissions after an administrator removes those permissions from a RoleTemplate.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-281 - Improper preservation of permissions
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 2.13.0 , < 2.13.7 (semver)
    Affected: 2.14.0 , < 2.14.3 (semver)
    Create a notification for this product.
    Date Public
    2026-06-29 14:20
    Credits
    Isaac David
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44947",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-30T15:03:37.236401Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T15:03:44.276Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Rancher",
              "product": "Rancher",
              "repo": "https://github.com/rancher/rancher/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "2.13.7",
                  "status": "affected",
                  "version": "2.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.14.3",
                  "status": "affected",
                  "version": "2.14.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Isaac David"
            }
          ],
          "datePublic": "2026-06-29T14:20:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A missing clean-up in the legacy Project Role Template Binding (PRTB) \nreconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security \nAdmission (PSA) permissions after an administrator removes those \npermissions from a RoleTemplate."
                }
              ],
              "value": "A missing clean-up in the legacy Project Role Template Binding (PRTB) \nreconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security \nAdmission (PSA) permissions after an administrator removes those \npermissions from a RoleTemplate."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-281",
                  "description": "CWE-281 Improper preservation of permissions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T14:21:01.291Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/rancher/security/advisories/GHSA-c4rp-wgqc-mfhc"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Stale PSA ClusterRoleBinding Persists After RoleTemplate Downgrade in Rancher",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44947",
        "datePublished": "2026-06-30T14:21:01.291Z",
        "dateReserved": "2026-05-08T12:29:48.969Z",
        "dateUpdated": "2026-06-30T15:03:44.276Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44946 (GCVE-0-2026-44946)

    Vulnerability from nvd – Published: 2026-06-30 12:14 – Updated: 2026-07-01 03:55
    VLAI
    Title
    SAML Authentication Replay in Rancher
    Summary
    A SAML authentication replay vulnerability in Rancher's Assertion Consumer Service (ACS) handler did not enforce one-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-294 - Authentication bypass by capture-replay
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 2.14.0 , < 2.14.3 (semver)
    Affected: 2.13.0 , < 2.13.7 (semver)
    Affected: 2.12.0 , < 2.12.11 (semver)
    Affected: 2.11.0 , < 2.11.15 (semver)
    Create a notification for this product.
    Date Public
    2026-06-29 12:07
    Credits
    Corban Villa corban.villa@berkeley.edu of a U.C. Berkeley security research project by: Austin Chu, Sohee Kim, and Corban Villa
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44946",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-30T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-01T03:55:46.881Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Rancher",
              "product": "Rancher",
              "repo": "https://github.com/rancher/rancher/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "2.14.3",
                  "status": "affected",
                  "version": "2.14.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.13.7",
                  "status": "affected",
                  "version": "2.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.12.11",
                  "status": "affected",
                  "version": "2.12.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.11.15",
                  "status": "affected",
                  "version": "2.11.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Corban Villa corban.villa@berkeley.edu of a U.C. Berkeley security research project by: Austin Chu, Sohee Kim, and Corban Villa"
            }
          ],
          "datePublic": "2026-06-29T12:07:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A SAML authentication replay vulnerability in Rancher\u0027s Assertion\n Consumer Service (ACS) handler did not enforce \none-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,\u0026nbsp; \u0026nbsp;"
                }
              ],
              "value": "A SAML authentication replay vulnerability in Rancher\u0027s Assertion\n Consumer Service (ACS) handler did not enforce \none-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "HIGH",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 9.5,
                "baseSeverity": "CRITICAL",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "HIGH",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:H",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-294",
                  "description": "CWE-294 Authentication bypass by capture-replay",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T12:14:54.269Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/rancher/security/advisories/GHSA-c5jm-xcmq-9j95"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "SAML Authentication Replay in Rancher",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44946",
        "datePublished": "2026-06-30T12:14:54.269Z",
        "dateReserved": "2026-05-08T12:29:48.969Z",
        "dateUpdated": "2026-07-01T03:55:46.881Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-41053 (GCVE-0-2026-41053)

    Vulnerability from nvd – Published: 2026-06-30 11:38 – Updated: 2026-07-01 03:55
    VLAI
    Title
    Over-inclusive team membership expansion in GitHub App authentication provider for Rancher
    Summary
    Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting principal access to any logged in user, in 2.13 before 2.13.6 and 2.14 before 2.14.2.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-303 - Incorrect implementation of authentication algorithm
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 2.14.0 , < 2.14.2 (semver)
    Affected: 2.13.0 , < 2.13.6 (semver)
    Create a notification for this product.
    Date Public
    2026-05-28 11:31
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-41053",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-30T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-01T03:55:47.962Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "github auth provider"
              ],
              "packageName": "Rancher",
              "product": "Rancher",
              "repo": "https://github.com/rancher/rancher/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "2.14.2",
                  "status": "affected",
                  "version": "2.14.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.13.6",
                  "status": "affected",
                  "version": "2.13.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "datePublic": "2026-05-28T11:31:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting principal access to any logged in user, in 2.13 before 2.13.6 and 2.14 before 2.14.2."
                }
              ],
              "value": "Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting principal access to any logged in user, in 2.13 before 2.13.6 and 2.14 before 2.14.2."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-303",
                  "description": "CWE-303 Incorrect implementation of authentication algorithm",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T11:38:25.060Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/rancher/security/advisories/GHSA-4j6x-2764-m8gh"
            }
          ],
          "source": {
            "defect": [
              "secsys_codex@163.com"
            ],
            "discovery": "UNKNOWN"
          },
          "title": "Over-inclusive team membership expansion in GitHub App authentication provider for Rancher",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-41053",
        "datePublished": "2026-06-30T11:38:25.060Z",
        "dateReserved": "2026-04-16T13:37:50.680Z",
        "dateUpdated": "2026-07-01T03:55:47.962Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-41052 (GCVE-0-2026-41052)

    Vulnerability from nvd – Published: 2026-06-29 15:41 – Updated: 2026-06-30 03:55
    VLAI
    Title
    Rancher Privilege Escalation from Project Owner to Host
    Summary
    Improper privilege handling could be used by users with Project Owner role to escalate privileges, in Rancher versions 2.14 before 2.14.2, 2.13 before 2.13.6, and 2.12 before 2.12.10.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-305 - Authentication bypass by primary weakness
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 2.12.0 , < 2.12.10 (semver)
    Affected: 2.13.0 , < 2.13.6 (semver)
    Affected: 2.14.0 , < 2.14.2 (semver)
    Create a notification for this product.
    Date Public
    2026-05-28 11:14
    Credits
    Radtke Benedikt <Radtke@iabg.de> - github.com/Trolldemorted and Munier Marc <Munier@iabg.de> - github.com/mmunier
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-41052",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-29T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T03:55:34.599Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Rancher",
              "product": "Rancher",
              "repo": "https://github.com/rancher/rancher/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "2.12.10",
                  "status": "affected",
                  "version": "2.12.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.13.6",
                  "status": "affected",
                  "version": "2.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.14.2",
                  "status": "affected",
                  "version": "2.14.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Radtke Benedikt \u003cRadtke@iabg.de\u003e - github.com/Trolldemorted and Munier Marc \u003cMunier@iabg.de\u003e - github.com/mmunier"
            }
          ],
          "datePublic": "2026-05-28T11:14:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper privilege handling could be used by users with\u0026nbsp;Project Owner role to escalate privileges, in Rancher versions\u0026nbsp;2.14 before 2.14.2,\u0026nbsp;2.13 before 2.13.6, and\u0026nbsp;2.12 before 2.12.10."
                }
              ],
              "value": "Improper privilege handling could be used by users with\u00a0Project Owner role to escalate privileges, in Rancher versions\u00a02.14 before 2.14.2,\u00a02.13 before 2.13.6, and\u00a02.12 before 2.12.10."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 9.4,
                "baseSeverity": "CRITICAL",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "HIGH",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-305",
                  "description": "CWE-305 Authentication bypass by primary weakness",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T15:41:56.394Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/rancher/security/advisories/GHSA-vx8h-4prv-g744"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Rancher Privilege Escalation from Project Owner to Host",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-41052",
        "datePublished": "2026-06-29T15:41:56.394Z",
        "dateReserved": "2026-04-16T13:37:50.680Z",
        "dateUpdated": "2026-06-30T03:55:34.599Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-25707 (GCVE-0-2026-25707)

    Vulnerability from nvd – Published: 2026-06-29 10:04 – Updated: 2026-06-30 03:55
    VLAI
    Title
    Handcrafted repo metadata may cause arbitrary local files to be overwritten by libzypp
    Summary
    A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositories to overwrite files on the system, leading to denial of service or privilege escalation.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Relative path traversal
    Assigner
    Impacted products
    Vendor Product Version
    SUSE libzypp Affected: 0 , < 17.38.10 (rpm)
    Create a notification for this product.
    Date Public
    2026-05-28 09:56
    Credits
    Michael Andres of SUSE
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25707",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-29T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T03:55:33.471Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "libzypp",
              "product": "libzypp",
              "repo": "https://github.com/openSUSE/libzypp",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "17.38.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "rpm"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Michael Andres of SUSE"
            }
          ],
          "datePublic": "2026-05-28T09:56:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositories to overwrite files on the system, leading to denial of service or privilege escalation."
                }
              ],
              "value": "A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositories to overwrite files on the system, leading to denial of service or privilege escalation."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-165",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-165 File Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "CWE-23 Relative path traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T10:04:59.223Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://bugzilla.suse.com/show_bug.cgi?id=1259802"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openSUSE/libzypp/commit/f09feda7fca03c941218aab0bb161cc82b185b6b"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Handcrafted repo metadata may cause arbitrary local files to be overwritten by libzypp",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-25707",
        "datePublished": "2026-06-29T10:04:59.223Z",
        "dateReserved": "2026-02-05T15:37:24.184Z",
        "dateUpdated": "2026-06-30T03:55:33.471Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44939 (GCVE-0-2026-44939)

    Vulnerability from nvd – Published: 2026-06-19 12:13 – Updated: 2026-06-24 03:56
    VLAI
    Title
    Command injection through unsanitized YAML parameter in Rancher
    Summary
    A command injection vulnerability in the Rancher Manager cluster before 2.14.2 import endpoint /v3/import/{token}_{clusterId}.yaml through unsanitized YAML parameters could allow remote attackers to break out of an image, and execute e.g. malicious containers.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-95 - Improper neutralization of directives in dynamically evaluated code ('eval injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 2.14.0 , < 2.14.2 (semver)
    Affected: 2.13.0 , < 2.13.6 (semver)
    Affected: 2.12.0 , < 2.12.10 (semver)
    Affected: 2.11.0 , < 2.11.14 (semver)
    Affected: 2.10.0 , < 2.10.12 (semver)
    Create a notification for this product.
    Date Public
    2026-05-27 16:36
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44939",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-23T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-24T03:56:15.304Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Rancher",
              "product": "Rancher",
              "repo": "https://github.com/rancher/rancher/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "2.14.2",
                  "status": "affected",
                  "version": "2.14.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.13.6",
                  "status": "affected",
                  "version": "2.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.12.10",
                  "status": "affected",
                  "version": "2.12.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.11.14",
                  "status": "affected",
                  "version": "2.11.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.10.12",
                  "status": "affected",
                  "version": "2.10.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "datePublic": "2026-05-27T16:36:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A command injection vulnerability in the Rancher Manager cluster before 2.14.2 import endpoint  \u003ccode\u003e/v3/import/{token}_{clusterId}.yaml\u003c/code\u003e through unsanitized YAML parameters could allow remote attackers to break out of an image, and execute e.g. malicious containers."
                }
              ],
              "value": "A command injection vulnerability in the Rancher Manager cluster before 2.14.2 import endpoint  /v3/import/{token}_{clusterId}.yaml through unsanitized YAML parameters could allow remote attackers to break out of an image, and execute e.g. malicious containers."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-242",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-242 Code Injection"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 9.4,
                "baseSeverity": "CRITICAL",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "HIGH",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "PASSIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-95",
                  "description": "CWE-95 Improper neutralization of directives in dynamically evaluated code (\u0027eval injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-19T12:13:39.936Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/rancher/security/advisories/GHSA-mhc6-2gfq-xx62"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Command injection through unsanitized YAML parameter in Rancher",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44939",
        "datePublished": "2026-06-19T12:13:39.936Z",
        "dateReserved": "2026-05-08T12:29:48.967Z",
        "dateUpdated": "2026-06-24T03:56:15.304Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44942 (GCVE-0-2026-44942)

    Vulnerability from nvd – Published: 2026-06-18 09:57 – Updated: 2026-06-18 12:09
    VLAI
    Title
    libzypp .repo files can have an optional path which can lead to path traversal attacks
    Summary
    A path traversal in handling the "path" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-24 - Path traversal: '../filedir'
    Assigner
    Impacted products
    Vendor Product Version
    SUSE libzypp Affected: 17.0.0 , < 17.38.13 (semver)
    Affected: 0 , < 16.22.19 (semver)
    Create a notification for this product.
    Credits
    Michael Andres
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44942",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-18T12:05:47.827082Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-18T12:09:37.292Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "repo parsing"
              ],
              "packageName": "libzypp",
              "product": "libzypp",
              "repo": "https://github.com/opensuse/libzypp",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "17.38.13",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "16.22.19",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Michael Andres"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A path traversal in handling the \"path\" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content."
                }
              ],
              "value": "A path traversal in handling the \"path\" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-130",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-130 Excessive Allocation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-24",
                  "description": "CWE-24 Path traversal: \u0027../filedir\u0027",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-18T09:57:12.821Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://bugzilla.suse.com/show_bug.cgi?id=1267874"
            },
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.suse.com/security/cve/CVE-2026-44942.html"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "libzypp .repo files can have an optional path which can lead to path traversal attacks",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44942",
        "datePublished": "2026-06-18T09:57:12.821Z",
        "dateReserved": "2026-05-08T12:29:48.968Z",
        "dateUpdated": "2026-06-18T12:09:37.292Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44932 (GCVE-0-2026-44932)

    Vulnerability from nvd – Published: 2026-06-16 15:26 – Updated: 2026-06-18 03:55
    VLAI
    Title
    indirect remote shell command injection via unsanitized DHCP options in wicked
    Summary
    Passing of unsanitized strings from DHCP replies into the wicked dhcp client before wicked 0.6.79 could be used by attackers operating a malicious DHCP server to execute code on the local machine.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    SUSE wicked Affected: 0 , < 0.6.79 (semver)
    Create a notification for this product.
    Date Public
    2026-06-10 15:15
    Credits
    Wolfgang Frisch using Claude Opus
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44932",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-17T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-18T03:55:34.354Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://github.com/openSUSE/wicked",
              "defaultStatus": "unaffected",
              "modules": [
                "dhcp handling"
              ],
              "packageName": "wicked",
              "product": "wicked",
              "repo": "https://github.com/openSUSE/wicked",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "0.6.79",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Wolfgang Frisch using Claude Opus"
            }
          ],
          "datePublic": "2026-06-10T15:15:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003ePassing of unsanitized strings from DHCP replies into the wicked dhcp client before wicked 0.6.79 could be used by attackers operating a malicious DHCP server to execute code on the local machine.\u003c/div\u003e"
                }
              ],
              "value": "Passing of unsanitized strings from DHCP replies into the wicked dhcp client before wicked 0.6.79 could be used by attackers operating a malicious DHCP server to execute code on the local machine."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-242",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-242 Code Injection"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "CWE-78",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-16T15:26:51.919Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://bugzilla.suse.com/show_bug.cgi?id=1265221"
            },
            {
              "tags": [
                "release-notes"
              ],
              "url": "https://github.com/openSUSE/wicked/releases/tag/version-0.6.79"
            },
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026688.html"
            },
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026689.html"
            },
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026690.html"
            },
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026691.html"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "indirect remote shell command injection via unsanitized DHCP options in wicked",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44932",
        "datePublished": "2026-06-16T15:26:51.919Z",
        "dateReserved": "2026-05-08T12:29:48.966Z",
        "dateUpdated": "2026-06-18T03:55:34.354Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-71261 (GCVE-0-2025-71261)

    Vulnerability from nvd – Published: 2026-06-16 15:42 – Updated: 2026-06-16 17:52
    VLAI
    Title
    Harvester's SUSE Virtualization Registration Client Vulnerable to MITM and DOS
    Summary
    An attacker with network-level access between the SUSE Virtualization and Rancher Manager in SUSE Harvester before 1.8.0 could interfere with the TLS handshake and abuse it to bypass TLS as a security control.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Harvester Affected: 0 , < 1.8 (custom)
    Create a notification for this product.
    Date Public
    2026-06-16 15:38
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-71261",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-16T17:52:23.783748Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-16T17:52:30.747Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "SUSE Virtualization (Harvester) Rancher integration mechanism"
              ],
              "packageName": "Harvester",
              "product": "Harvester",
              "repo": "https://github.com/harvester/harvester/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "1.8",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2026-06-16T15:38:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An attacker with network-level access between the SUSE Virtualization \nand Rancher Manager in SUSE Harvester before 1.8.0 could interfere with the TLS handshake and abuse it \nto bypass TLS as a security control."
                }
              ],
              "value": "An attacker with network-level access between the SUSE Virtualization \nand Rancher Manager in SUSE Harvester before 1.8.0 could interfere with the TLS handshake and abuse it \nto bypass TLS as a security control."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-94",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-94 Adversary in the Middle (AiTM)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-295",
                  "description": "CWE-295",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-16T15:42:32.446Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/harvester/harvester/security/advisories/GHSA-pgh9-mpwc-8jjf"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Harvester\u0027s SUSE Virtualization Registration Client Vulnerable to MITM and DOS",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2025-71261",
        "datePublished": "2026-06-16T15:42:32.446Z",
        "dateReserved": "2026-03-03T12:54:04.008Z",
        "dateUpdated": "2026-06-16T17:52:30.747Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44543 (GCVE-0-2026-44543)

    Vulnerability from nvd – Published: 2026-05-28 16:41 – Updated: 2026-05-30 01:59
    VLAI
    Title
    Local Path Provisioner: HelperPod Template Injection
    Summary
    Local Path Provisioner provides a way for the Kubernetes users to utilize the local storage in each node. Prior to 0.0.36, a malicious user with permission to edit the local-path-config ConfigMap in the local-path-storage namespace can manipulate the helperPod.yaml template used by rancher/local-path-provisioner. The helperPod.yaml template is loaded by the provisioner and used to create HelperPods during PVC provisioning and cleanup operations. However, the template is not sufficiently validated before use. Security-sensitive fields such as securityContext.privileged, hostPath volumes, and Linux capabilities can be injected into the template. When a PVC operation triggers HelperPod creation, the provisioner creates the HelperPod using the attacker-controlled template. This can result in a privileged pod running on the target node with the host root filesystem mounted. This may allow the attacker to access sensitive host files, read ServiceAccount tokens from other pods on the same node, access other tenants' local-path volume data, or modify files on the host node. This vulnerability is fixed in 0.0.36.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Improper Privilege Management
    Assigner
    References
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44543",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-30T01:59:44.054722Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-30T01:59:56.553Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "local-path-provisioner",
              "vendor": "rancher",
              "versions": [
                {
                  "status": "affected",
                  "version": "\u003c 0.0.36"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Local Path Provisioner provides a way for the Kubernetes users to utilize the local storage in each node. Prior to 0.0.36, a malicious user with permission to edit the local-path-config ConfigMap in the local-path-storage namespace can manipulate the helperPod.yaml template used by rancher/local-path-provisioner. The helperPod.yaml template is loaded by the provisioner and used to create HelperPods during PVC provisioning and cleanup operations. However, the template is not sufficiently validated before use. Security-sensitive fields such as securityContext.privileged, hostPath volumes, and Linux capabilities can be injected into the template. When a PVC operation triggers HelperPod creation, the provisioner creates the HelperPod using the attacker-controlled template. This can result in a privileged pod running on the target node with the host root filesystem mounted. This may allow the attacker to access sensitive host files, read ServiceAccount tokens from other pods on the same node, access other tenants\u0027 local-path volume data, or modify files on the host node. This vulnerability is fixed in 0.0.36."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 8.7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-269",
                  "description": "CWE-269: Improper Privilege Management",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-28T16:41:35.596Z",
            "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
            "shortName": "GitHub_M"
          },
          "references": [
            {
              "name": "https://github.com/rancher/local-path-provisioner/security/advisories/GHSA-7fxv-8wr2-mfc4",
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://github.com/rancher/local-path-provisioner/security/advisories/GHSA-7fxv-8wr2-mfc4"
            }
          ],
          "source": {
            "advisory": "GHSA-7fxv-8wr2-mfc4",
            "discovery": "UNKNOWN"
          },
          "title": "Local Path Provisioner: HelperPod Template Injection"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "assignerShortName": "GitHub_M",
        "cveId": "CVE-2026-44543",
        "datePublished": "2026-05-28T16:41:35.596Z",
        "dateReserved": "2026-05-06T19:38:10.567Z",
        "dateUpdated": "2026-05-30T01:59:56.553Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44935 (GCVE-0-2026-44935)

    Vulnerability from cvelistv5 – Published: 2026-07-02 16:00 – Updated: 2026-07-03 03:56
    VLAI
    Title
    Rancher Fleet vulnerable to cross namespace secret disclosure via unvalidated `valuesFrom` references in Helm Deployer
    Summary
    Missing validation of "valuesFrom" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other tenants.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1287 - Improper validation of specified type of input
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 0.15.0 , < 0.15.2 (semver)
    Affected: 0.14.0 , < 0.14.6 (semver)
    Affected: 0.13.0 , < 0.13.11 (semver)
    Affected: 0.12.0 , < 0.12.15 (semver)
    Create a notification for this product.
    Date Public
    2026-05-28 15:26
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44935",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-02T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-03T03:56:15.397Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Fleett",
              "product": "Rancher",
              "repo": "https://github.com/rancher/fleet/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "0.15.2",
                  "status": "affected",
                  "version": "0.15.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.14.6",
                  "status": "affected",
                  "version": "0.14.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.13.11",
                  "status": "affected",
                  "version": "0.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.12.15",
                  "status": "affected",
                  "version": "0.12.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "datePublic": "2026-05-28T15:26:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003e\u003cbr\u003eMissing validation of \"valuesFrom\" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other tenants.\u003c/div\u003e"
                }
              ],
              "value": "Missing validation of \"valuesFrom\" references in Helm Deployer of SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.15 could be used by owners of one tenant to access fleet credentials of other tenants."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.9,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1287",
                  "description": "CWE-1287 Improper validation of specified type of input",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-02T16:01:11.745Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/fleet/security/advisories/GHSA-xr65-5cpm-g36x"
            }
          ],
          "source": {
            "discovery": "EXTERNAL"
          },
          "title": "Rancher Fleet vulnerable to cross namespace secret disclosure via unvalidated `valuesFrom` references in Helm Deployer",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44935",
        "datePublished": "2026-07-02T16:00:06.751Z",
        "dateReserved": "2026-05-08T12:29:48.967Z",
        "dateUpdated": "2026-07-03T03:56:15.397Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44941 (GCVE-0-2026-44941)

    Vulnerability from cvelistv5 – Published: 2026-07-02 15:19 – Updated: 2026-07-03 03:56
    VLAI
    Title
    libzypp path traversal via "keyhint" in repomd.xml
    Summary
    A relative path traversal in the "keyhint" option in repomd.xml parsing of libzypp before 17.38.12 can be used by attackers able to supply a malicious repository to inject or overwrite files in the target system as root.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Relative path traversal
    Assigner
    Impacted products
    Vendor Product Version
    SUSE libzypp Affected: 0 , < 17.38.12 (rpm)
    Create a notification for this product.
    Date Public
    2026-06-05 15:15
    Credits
    Trung Nguyen <trungnh@cystack.net>
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44941",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-02T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-03T03:56:13.912Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://bugzilla.suse.com/show_bug.cgi?id=1267426"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "libzypp",
              "product": "libzypp",
              "repo": "https://github.com/openSUSE/libzypp/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "17.38.12",
                  "status": "affected",
                  "version": "0",
                  "versionType": "rpm"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Trung Nguyen \u003ctrungnh@cystack.net\u003e"
            }
          ],
          "datePublic": "2026-06-05T15:15:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A relative path traversal in the \"keyhint\" option in repomd.xml parsing of libzypp before 17.38.12 can be used by attackers able to supply a malicious repository to inject or overwrite files in the target system as root."
                }
              ],
              "value": "A relative path traversal in the \"keyhint\" option in repomd.xml parsing of libzypp before 17.38.12 can be used by attackers able to supply a malicious repository to inject or overwrite files in the target system as root."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-165",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-165 File Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.4,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "CWE-23 Relative path traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-02T15:19:05.302Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://bugzilla.suse.com/show_bug.cgi?id=1267426"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openSUSE/libzypp/commit/294b1bad442d089ca671c5c03adc8031e3b29e04"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "libzypp path traversal via \"keyhint\" in repomd.xml",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44941",
        "datePublished": "2026-07-02T15:19:05.302Z",
        "dateReserved": "2026-05-08T12:29:48.968Z",
        "dateUpdated": "2026-07-03T03:56:13.912Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44948 (GCVE-0-2026-44948)

    Vulnerability from cvelistv5 – Published: 2026-06-30 15:12 – Updated: 2026-06-30 16:00
    VLAI
    Title
    Path Traversal in Rancher Fleet ImageScan GitRepo Path Handler
    Summary
    A path traversal vulnerability was found in Fleet's ImageScan subsystem in Rancher Fleet 0.12.0 up to 0.12.16, 0.13.0 up to 0.13.12, 0.14.0 up to 0.14.7 and 0.15.0 up to 0.15.3 could be used to traverse outside of the intended directory, causing a denial of service.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Relative path traversal
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 0.12.0 , < 0.12.16 (semver)
    Affected: 0.13.0 , < 0.13.12 (semver)
    Affected: 0.14.0 , < 0.14.7 (semver)
    Affected: 0.15.0 , < 0.15.3 (semver)
    Create a notification for this product.
    Date Public
    2026-06-29 15:08
    Credits
    Sergey Kanibor
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44948",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-30T15:59:49.142430Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T16:00:33.240Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Fleet",
              "product": "Rancher",
              "repo": "https://github.com/rancher/fleet/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "0.12.16",
                  "status": "affected",
                  "version": "0.12.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.13.12",
                  "status": "affected",
                  "version": "0.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.14.7",
                  "status": "affected",
                  "version": "0.14.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.15.3",
                  "status": "affected",
                  "version": "0.15.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Sergey Kanibor"
            }
          ],
          "datePublic": "2026-06-29T15:08:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A path traversal vulnerability was found in Fleet\u0027s ImageScan subsystem in Rancher Fleet 0.12.0 up to 0.12.16, 0.13.0 up to 0.13.12, 0.14.0 up to 0.14.7 and 0.15.0 up to 0.15.3 could be used to traverse outside of the intended directory, causing a denial of service."
                }
              ],
              "value": "A path traversal vulnerability was found in Fleet\u0027s ImageScan subsystem in Rancher Fleet 0.12.0 up to 0.12.16, 0.13.0 up to 0.13.12, 0.14.0 up to 0.14.7 and 0.15.0 up to 0.15.3 could be used to traverse outside of the intended directory, causing a denial of service."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-126",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-126 Path Traversal"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "CWE-23 Relative path traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T15:12:17.346Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/fleet/security/advisories/GHSA-c45g-6c2c-rj3p"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Path Traversal in Rancher Fleet ImageScan GitRepo Path Handler",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44948",
        "datePublished": "2026-06-30T15:12:17.346Z",
        "dateReserved": "2026-05-08T12:29:48.969Z",
        "dateUpdated": "2026-06-30T16:00:33.240Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44949 (GCVE-0-2026-44949)

    Vulnerability from cvelistv5 – Published: 2026-06-30 14:41 – Updated: 2026-06-30 15:10
    VLAI
    Title
    Unauthenticated namespace creation and RBAC injection via rancher-webhook FleetWorkspace mutating webhook
    Summary
    A Rancher FleetWorkspace admission path allowed side effects to occur in the Rancher webhook handler for versions 0.7.0 up to 0.7.10, 0.8.0 up to 0.8.7, 0.9.0 up to 0.9.6 and 0.10.0 up to 0.10.7. An unauthenticated attacker with network access to the in-cluster rancher-webhook service could submit a crafted admission payload and cause workspace-related Kubernetes objects to be created with attacker-chosen identity data.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing authentication for critical function
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 0.7.0 , < 0.7.10 (semver)
    Affected: 0.8.0 , < 0.8.7 (semver)
    Affected: 0.9.0 , < 0.9.6 (semver)
    Affected: 0.10.0 , < 0.10.7 (semver)
    Create a notification for this product.
    Date Public
    2026-06-29 14:27
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44949",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-30T15:10:07.132296Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T15:10:17.154Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Webhook",
              "product": "Rancher",
              "repo": "https://github.com/rancher/webhook/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "0.7.10",
                  "status": "affected",
                  "version": "0.7.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.8.7",
                  "status": "affected",
                  "version": "0.8.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.9.6",
                  "status": "affected",
                  "version": "0.9.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "0.10.7",
                  "status": "affected",
                  "version": "0.10.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "datePublic": "2026-06-29T14:27:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A Rancher FleetWorkspace admission path allowed side effects to occur in\n the Rancher webhook handler for versions 0.7.0 up to 0.7.10, 0.8.0 up to 0.8.7, 0.9.0 up to 0.9.6 and 0.10.0 up to 0.10.7. An unauthenticated attacker with network access to\n the in-cluster \u003ccode\u003erancher-webhook\u003c/code\u003e service\n could submit a crafted admission payload and cause workspace-related \nKubernetes objects to be created with attacker-chosen identity data."
                }
              ],
              "value": "A Rancher FleetWorkspace admission path allowed side effects to occur in\n the Rancher webhook handler for versions 0.7.0 up to 0.7.10, 0.8.0 up to 0.8.7, 0.9.0 up to 0.9.6 and 0.10.0 up to 0.10.7. An unauthenticated attacker with network access to\n the in-cluster rancher-webhook service\n could submit a crafted admission payload and cause workspace-related \nKubernetes objects to be created with attacker-chosen identity data."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306 Missing authentication for critical function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T14:41:34.007Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/webhook/security/advisories/GHSA-h83p-cq95-vph4"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Unauthenticated namespace creation and RBAC injection via rancher-webhook FleetWorkspace mutating webhook",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44949",
        "datePublished": "2026-06-30T14:41:34.007Z",
        "dateReserved": "2026-05-08T12:29:48.969Z",
        "dateUpdated": "2026-06-30T15:10:17.154Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44947 (GCVE-0-2026-44947)

    Vulnerability from cvelistv5 – Published: 2026-06-30 14:21 – Updated: 2026-06-30 15:03
    VLAI
    Title
    Stale PSA ClusterRoleBinding Persists After RoleTemplate Downgrade in Rancher
    Summary
    A missing clean-up in the legacy Project Role Template Binding (PRTB) reconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security Admission (PSA) permissions after an administrator removes those permissions from a RoleTemplate.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-281 - Improper preservation of permissions
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 2.13.0 , < 2.13.7 (semver)
    Affected: 2.14.0 , < 2.14.3 (semver)
    Create a notification for this product.
    Date Public
    2026-06-29 14:20
    Credits
    Isaac David
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44947",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-30T15:03:37.236401Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T15:03:44.276Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Rancher",
              "product": "Rancher",
              "repo": "https://github.com/rancher/rancher/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "2.13.7",
                  "status": "affected",
                  "version": "2.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.14.3",
                  "status": "affected",
                  "version": "2.14.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Isaac David"
            }
          ],
          "datePublic": "2026-06-29T14:20:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A missing clean-up in the legacy Project Role Template Binding (PRTB) \nreconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security \nAdmission (PSA) permissions after an administrator removes those \npermissions from a RoleTemplate."
                }
              ],
              "value": "A missing clean-up in the legacy Project Role Template Binding (PRTB) \nreconciler in Rancher versions 2.13.0 up to 2.13.7 and 2.14.0 up to 2.14.3 allowed users to retain unauthorized Pod Security \nAdmission (PSA) permissions after an administrator removes those \npermissions from a RoleTemplate."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-281",
                  "description": "CWE-281 Improper preservation of permissions",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T14:21:01.291Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/rancher/security/advisories/GHSA-c4rp-wgqc-mfhc"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Stale PSA ClusterRoleBinding Persists After RoleTemplate Downgrade in Rancher",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44947",
        "datePublished": "2026-06-30T14:21:01.291Z",
        "dateReserved": "2026-05-08T12:29:48.969Z",
        "dateUpdated": "2026-06-30T15:03:44.276Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44946 (GCVE-0-2026-44946)

    Vulnerability from cvelistv5 – Published: 2026-06-30 12:14 – Updated: 2026-07-01 03:55
    VLAI
    Title
    SAML Authentication Replay in Rancher
    Summary
    A SAML authentication replay vulnerability in Rancher's Assertion Consumer Service (ACS) handler did not enforce one-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-294 - Authentication bypass by capture-replay
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 2.14.0 , < 2.14.3 (semver)
    Affected: 2.13.0 , < 2.13.7 (semver)
    Affected: 2.12.0 , < 2.12.11 (semver)
    Affected: 2.11.0 , < 2.11.15 (semver)
    Create a notification for this product.
    Date Public
    2026-06-29 12:07
    Credits
    Corban Villa corban.villa@berkeley.edu of a U.C. Berkeley security research project by: Austin Chu, Sohee Kim, and Corban Villa
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44946",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-30T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-01T03:55:46.881Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Rancher",
              "product": "Rancher",
              "repo": "https://github.com/rancher/rancher/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "2.14.3",
                  "status": "affected",
                  "version": "2.14.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.13.7",
                  "status": "affected",
                  "version": "2.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.12.11",
                  "status": "affected",
                  "version": "2.12.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.11.15",
                  "status": "affected",
                  "version": "2.11.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Corban Villa corban.villa@berkeley.edu of a U.C. Berkeley security research project by: Austin Chu, Sohee Kim, and Corban Villa"
            }
          ],
          "datePublic": "2026-06-29T12:07:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A SAML authentication replay vulnerability in Rancher\u0027s Assertion\n Consumer Service (ACS) handler did not enforce \none-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,\u0026nbsp; \u0026nbsp;"
                }
              ],
              "value": "A SAML authentication replay vulnerability in Rancher\u0027s Assertion\n Consumer Service (ACS) handler did not enforce \none-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "HIGH",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 9.5,
                "baseSeverity": "CRITICAL",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "HIGH",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:H",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-294",
                  "description": "CWE-294 Authentication bypass by capture-replay",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T12:14:54.269Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/rancher/security/advisories/GHSA-c5jm-xcmq-9j95"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "SAML Authentication Replay in Rancher",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44946",
        "datePublished": "2026-06-30T12:14:54.269Z",
        "dateReserved": "2026-05-08T12:29:48.969Z",
        "dateUpdated": "2026-07-01T03:55:46.881Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-41053 (GCVE-0-2026-41053)

    Vulnerability from cvelistv5 – Published: 2026-06-30 11:38 – Updated: 2026-07-01 03:55
    VLAI
    Title
    Over-inclusive team membership expansion in GitHub App authentication provider for Rancher
    Summary
    Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting principal access to any logged in user, in 2.13 before 2.13.6 and 2.14 before 2.14.2.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-303 - Incorrect implementation of authentication algorithm
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 2.14.0 , < 2.14.2 (semver)
    Affected: 2.13.0 , < 2.13.6 (semver)
    Create a notification for this product.
    Date Public
    2026-05-28 11:31
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-41053",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-30T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-01T03:55:47.962Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "github auth provider"
              ],
              "packageName": "Rancher",
              "product": "Rancher",
              "repo": "https://github.com/rancher/rancher/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "2.14.2",
                  "status": "affected",
                  "version": "2.14.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.13.6",
                  "status": "affected",
                  "version": "2.13.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "datePublic": "2026-05-28T11:31:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting principal access to any logged in user, in 2.13 before 2.13.6 and 2.14 before 2.14.2."
                }
              ],
              "value": "Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting principal access to any logged in user, in 2.13 before 2.13.6 and 2.14 before 2.14.2."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-303",
                  "description": "CWE-303 Incorrect implementation of authentication algorithm",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-30T11:38:25.060Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/rancher/security/advisories/GHSA-4j6x-2764-m8gh"
            }
          ],
          "source": {
            "defect": [
              "secsys_codex@163.com"
            ],
            "discovery": "UNKNOWN"
          },
          "title": "Over-inclusive team membership expansion in GitHub App authentication provider for Rancher",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-41053",
        "datePublished": "2026-06-30T11:38:25.060Z",
        "dateReserved": "2026-04-16T13:37:50.680Z",
        "dateUpdated": "2026-07-01T03:55:47.962Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-41052 (GCVE-0-2026-41052)

    Vulnerability from cvelistv5 – Published: 2026-06-29 15:41 – Updated: 2026-06-30 03:55
    VLAI
    Title
    Rancher Privilege Escalation from Project Owner to Host
    Summary
    Improper privilege handling could be used by users with Project Owner role to escalate privileges, in Rancher versions 2.14 before 2.14.2, 2.13 before 2.13.6, and 2.12 before 2.12.10.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-305 - Authentication bypass by primary weakness
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 2.12.0 , < 2.12.10 (semver)
    Affected: 2.13.0 , < 2.13.6 (semver)
    Affected: 2.14.0 , < 2.14.2 (semver)
    Create a notification for this product.
    Date Public
    2026-05-28 11:14
    Credits
    Radtke Benedikt <Radtke@iabg.de> - github.com/Trolldemorted and Munier Marc <Munier@iabg.de> - github.com/mmunier
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-41052",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-29T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T03:55:34.599Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Rancher",
              "product": "Rancher",
              "repo": "https://github.com/rancher/rancher/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "2.12.10",
                  "status": "affected",
                  "version": "2.12.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.13.6",
                  "status": "affected",
                  "version": "2.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.14.2",
                  "status": "affected",
                  "version": "2.14.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Radtke Benedikt \u003cRadtke@iabg.de\u003e - github.com/Trolldemorted and Munier Marc \u003cMunier@iabg.de\u003e - github.com/mmunier"
            }
          ],
          "datePublic": "2026-05-28T11:14:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper privilege handling could be used by users with\u0026nbsp;Project Owner role to escalate privileges, in Rancher versions\u0026nbsp;2.14 before 2.14.2,\u0026nbsp;2.13 before 2.13.6, and\u0026nbsp;2.12 before 2.12.10."
                }
              ],
              "value": "Improper privilege handling could be used by users with\u00a0Project Owner role to escalate privileges, in Rancher versions\u00a02.14 before 2.14.2,\u00a02.13 before 2.13.6, and\u00a02.12 before 2.12.10."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 9.4,
                "baseSeverity": "CRITICAL",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "HIGH",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-305",
                  "description": "CWE-305 Authentication bypass by primary weakness",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T15:41:56.394Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/rancher/security/advisories/GHSA-vx8h-4prv-g744"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Rancher Privilege Escalation from Project Owner to Host",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-41052",
        "datePublished": "2026-06-29T15:41:56.394Z",
        "dateReserved": "2026-04-16T13:37:50.680Z",
        "dateUpdated": "2026-06-30T03:55:34.599Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-25707 (GCVE-0-2026-25707)

    Vulnerability from cvelistv5 – Published: 2026-06-29 10:04 – Updated: 2026-06-30 03:55
    VLAI
    Title
    Handcrafted repo metadata may cause arbitrary local files to be overwritten by libzypp
    Summary
    A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositories to overwrite files on the system, leading to denial of service or privilege escalation.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-23 - Relative path traversal
    Assigner
    Impacted products
    Vendor Product Version
    SUSE libzypp Affected: 0 , < 17.38.10 (rpm)
    Create a notification for this product.
    Date Public
    2026-05-28 09:56
    Credits
    Michael Andres of SUSE
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25707",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-29T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-30T03:55:33.471Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "libzypp",
              "product": "libzypp",
              "repo": "https://github.com/openSUSE/libzypp",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "17.38.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "rpm"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Michael Andres of SUSE"
            }
          ],
          "datePublic": "2026-05-28T09:56:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositories to overwrite files on the system, leading to denial of service or privilege escalation."
                }
              ],
              "value": "A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositories to overwrite files on the system, leading to denial of service or privilege escalation."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-165",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-165 File Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-23",
                  "description": "CWE-23 Relative path traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-29T10:04:59.223Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://bugzilla.suse.com/show_bug.cgi?id=1259802"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/openSUSE/libzypp/commit/f09feda7fca03c941218aab0bb161cc82b185b6b"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Handcrafted repo metadata may cause arbitrary local files to be overwritten by libzypp",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-25707",
        "datePublished": "2026-06-29T10:04:59.223Z",
        "dateReserved": "2026-02-05T15:37:24.184Z",
        "dateUpdated": "2026-06-30T03:55:33.471Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44939 (GCVE-0-2026-44939)

    Vulnerability from cvelistv5 – Published: 2026-06-19 12:13 – Updated: 2026-06-24 03:56
    VLAI
    Title
    Command injection through unsanitized YAML parameter in Rancher
    Summary
    A command injection vulnerability in the Rancher Manager cluster before 2.14.2 import endpoint /v3/import/{token}_{clusterId}.yaml through unsanitized YAML parameters could allow remote attackers to break out of an image, and execute e.g. malicious containers.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-95 - Improper neutralization of directives in dynamically evaluated code ('eval injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Rancher Affected: 2.14.0 , < 2.14.2 (semver)
    Affected: 2.13.0 , < 2.13.6 (semver)
    Affected: 2.12.0 , < 2.12.10 (semver)
    Affected: 2.11.0 , < 2.11.14 (semver)
    Affected: 2.10.0 , < 2.10.12 (semver)
    Create a notification for this product.
    Date Public
    2026-05-27 16:36
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44939",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-23T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-24T03:56:15.304Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "packageName": "Rancher",
              "product": "Rancher",
              "repo": "https://github.com/rancher/rancher/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "2.14.2",
                  "status": "affected",
                  "version": "2.14.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.13.6",
                  "status": "affected",
                  "version": "2.13.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.12.10",
                  "status": "affected",
                  "version": "2.12.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.11.14",
                  "status": "affected",
                  "version": "2.11.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "2.10.12",
                  "status": "affected",
                  "version": "2.10.0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "datePublic": "2026-05-27T16:36:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A command injection vulnerability in the Rancher Manager cluster before 2.14.2 import endpoint  \u003ccode\u003e/v3/import/{token}_{clusterId}.yaml\u003c/code\u003e through unsanitized YAML parameters could allow remote attackers to break out of an image, and execute e.g. malicious containers."
                }
              ],
              "value": "A command injection vulnerability in the Rancher Manager cluster before 2.14.2 import endpoint  /v3/import/{token}_{clusterId}.yaml through unsanitized YAML parameters could allow remote attackers to break out of an image, and execute e.g. malicious containers."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-242",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-242 Code Injection"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 9.4,
                "baseSeverity": "CRITICAL",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "HIGH",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "PASSIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-95",
                  "description": "CWE-95 Improper neutralization of directives in dynamically evaluated code (\u0027eval injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-19T12:13:39.936Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/rancher/rancher/security/advisories/GHSA-mhc6-2gfq-xx62"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Command injection through unsanitized YAML parameter in Rancher",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44939",
        "datePublished": "2026-06-19T12:13:39.936Z",
        "dateReserved": "2026-05-08T12:29:48.967Z",
        "dateUpdated": "2026-06-24T03:56:15.304Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44942 (GCVE-0-2026-44942)

    Vulnerability from cvelistv5 – Published: 2026-06-18 09:57 – Updated: 2026-06-18 12:09
    VLAI
    Title
    libzypp .repo files can have an optional path which can lead to path traversal attacks
    Summary
    A path traversal in handling the "path" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-24 - Path traversal: '../filedir'
    Assigner
    Impacted products
    Vendor Product Version
    SUSE libzypp Affected: 17.0.0 , < 17.38.13 (semver)
    Affected: 0 , < 16.22.19 (semver)
    Create a notification for this product.
    Credits
    Michael Andres
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44942",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-18T12:05:47.827082Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-18T12:09:37.292Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "repo parsing"
              ],
              "packageName": "libzypp",
              "product": "libzypp",
              "repo": "https://github.com/opensuse/libzypp",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "17.38.13",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "16.22.19",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Michael Andres"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A path traversal in handling the \"path\" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content."
                }
              ],
              "value": "A path traversal in handling the \"path\" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-130",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-130 Excessive Allocation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-24",
                  "description": "CWE-24 Path traversal: \u0027../filedir\u0027",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-18T09:57:12.821Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://bugzilla.suse.com/show_bug.cgi?id=1267874"
            },
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.suse.com/security/cve/CVE-2026-44942.html"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "libzypp .repo files can have an optional path which can lead to path traversal attacks",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44942",
        "datePublished": "2026-06-18T09:57:12.821Z",
        "dateReserved": "2026-05-08T12:29:48.968Z",
        "dateUpdated": "2026-06-18T12:09:37.292Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-71261 (GCVE-0-2025-71261)

    Vulnerability from cvelistv5 – Published: 2026-06-16 15:42 – Updated: 2026-06-16 17:52
    VLAI
    Title
    Harvester's SUSE Virtualization Registration Client Vulnerable to MITM and DOS
    Summary
    An attacker with network-level access between the SUSE Virtualization and Rancher Manager in SUSE Harvester before 1.8.0 could interfere with the TLS handshake and abuse it to bypass TLS as a security control.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    SUSE Harvester Affected: 0 , < 1.8 (custom)
    Create a notification for this product.
    Date Public
    2026-06-16 15:38
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-71261",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-16T17:52:23.783748Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-16T17:52:30.747Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "SUSE Virtualization (Harvester) Rancher integration mechanism"
              ],
              "packageName": "Harvester",
              "product": "Harvester",
              "repo": "https://github.com/harvester/harvester/",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "1.8",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2026-06-16T15:38:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "An attacker with network-level access between the SUSE Virtualization \nand Rancher Manager in SUSE Harvester before 1.8.0 could interfere with the TLS handshake and abuse it \nto bypass TLS as a security control."
                }
              ],
              "value": "An attacker with network-level access between the SUSE Virtualization \nand Rancher Manager in SUSE Harvester before 1.8.0 could interfere with the TLS handshake and abuse it \nto bypass TLS as a security control."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-94",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-94 Adversary in the Middle (AiTM)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-295",
                  "description": "CWE-295",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-16T15:42:32.446Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://github.com/harvester/harvester/security/advisories/GHSA-pgh9-mpwc-8jjf"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Harvester\u0027s SUSE Virtualization Registration Client Vulnerable to MITM and DOS",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2025-71261",
        "datePublished": "2026-06-16T15:42:32.446Z",
        "dateReserved": "2026-03-03T12:54:04.008Z",
        "dateUpdated": "2026-06-16T17:52:30.747Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-44932 (GCVE-0-2026-44932)

    Vulnerability from cvelistv5 – Published: 2026-06-16 15:26 – Updated: 2026-06-18 03:55
    VLAI
    Title
    indirect remote shell command injection via unsanitized DHCP options in wicked
    Summary
    Passing of unsanitized strings from DHCP replies into the wicked dhcp client before wicked 0.6.79 could be used by attackers operating a malicious DHCP server to execute code on the local machine.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    SUSE wicked Affected: 0 , < 0.6.79 (semver)
    Create a notification for this product.
    Date Public
    2026-06-10 15:15
    Credits
    Wolfgang Frisch using Claude Opus
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-44932",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-17T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-18T03:55:34.354Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://github.com/openSUSE/wicked",
              "defaultStatus": "unaffected",
              "modules": [
                "dhcp handling"
              ],
              "packageName": "wicked",
              "product": "wicked",
              "repo": "https://github.com/openSUSE/wicked",
              "vendor": "SUSE",
              "versions": [
                {
                  "lessThan": "0.6.79",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Wolfgang Frisch using Claude Opus"
            }
          ],
          "datePublic": "2026-06-10T15:15:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cdiv\u003ePassing of unsanitized strings from DHCP replies into the wicked dhcp client before wicked 0.6.79 could be used by attackers operating a malicious DHCP server to execute code on the local machine.\u003c/div\u003e"
                }
              ],
              "value": "Passing of unsanitized strings from DHCP replies into the wicked dhcp client before wicked 0.6.79 could be used by attackers operating a malicious DHCP server to execute code on the local machine."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-242",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-242 Code Injection"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "CWE-78",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-16T15:26:51.919Z",
            "orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
            "shortName": "suse"
          },
          "references": [
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://bugzilla.suse.com/show_bug.cgi?id=1265221"
            },
            {
              "tags": [
                "release-notes"
              ],
              "url": "https://github.com/openSUSE/wicked/releases/tag/version-0.6.79"
            },
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026688.html"
            },
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026689.html"
            },
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026690.html"
            },
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026691.html"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "indirect remote shell command injection via unsanitized DHCP options in wicked",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb",
        "assignerShortName": "suse",
        "cveId": "CVE-2026-44932",
        "datePublished": "2026-06-16T15:26:51.919Z",
        "dateReserved": "2026-05-08T12:29:48.966Z",
        "dateUpdated": "2026-06-18T03:55:34.354Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }