ГлавнаяУязвимости → CVE-2026-44937
8.2высокая

CVE-2026-44937

Описание

Potential forgery of webhook requests when using a unauthenticated webhook in SUSE Rancher Fleet 0.15 before 0.15.2, 0.14 before 0.14.6, 0.13 before 0.13.11 and 0.12 before 0.12.5 could be used by remote attackers to cause a denial of service or a downgrade attack on other repositories on the system.

Затрагиваемое ПО
Suse Rancher fleet
CVSS
Балл8.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Источники
https://github.com/rancher/fleet/security/advisories/GHSA-jmf4-m7j9-g72r