CVE-2026-44946
EUVD-2026-4030430.06.2026, 13:18
A SAML authentication replay vulnerability in Rancher's Assertion Consumer Service (ACS) handler did not enforce one-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,Enginsight
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| suse | rancher | 2.14.0 ≤ 𝑥 < 2.14.3 | CNA |
| suse | rancher | 2.13.0 ≤ 𝑥 < 2.13.7 | CNA |
| suse | rancher | 2.12.0 ≤ 𝑥 < 2.12.11 | CNA |
| suse | rancher | 2.11.0 ≤ 𝑥 < 2.11.15 | CNA |
Vulnerability Media Exposure