CVE-2026-41053
EUVD-2026-4029730.06.2026, 12:16
Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting principal access to any logged in user, in 2.13 before 2.13.6 and 2.14 before 2.14.2.Enginsight
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| suse | rancher | 2.14.0 ≤ 𝑥 < 2.14.2 | CNA |
| suse | rancher | 2.13.0 ≤ 𝑥 < 2.13.6 | CNA |
Common Weakness Enumeration
Vulnerability Media Exposure