ГлавнаяУязвимости → CVE-2026-44946
7.4высокая

CVE-2026-44946

Описание

A SAML authentication replay vulnerability in Rancher's Assertion Consumer Service (ACS) handler did not enforce one-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,

Затрагиваемое ПО
Suse Rancher
CVSS
Балл7.4 — высокая
ВекторCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Источники
https://github.com/rancher/rancher/security/advisories/GHSA-c5jm-xcmq-9j95