CVE-2026-44946
PUBLISHED
Published: 30 Jun 2026, 12:14
Last modified:30 Jun 2026, 12:14
Vulnerability Summary
Overall Risk (default)
high
70/100 CVSS Score
9.5 CRITICAL
v4.0 (cve.org)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
30 Jun 2026, 12:14
Published
Vulnerability first disclosed
Description
A SAML authentication replay vulnerability in Rancher's Assertion Consumer Service (ACS) handler did not enforce one-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,
CVSS Metrics
- v4.0•CRITICAL•Score: 9.5CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:H
Techniques & Countermeasures
- CWE-294•Authentication Bypass by Capture-replay
A capture-replay flaw exists when the design of the product makes it possible for a malicious user to sniff network traffic and bypass authentication by replaying it to the server in question to the same effect as the original message (or with minor changes).
Affected Systems
- suse•rancher
≥ 2.14.0, < 2.14.3 | ≥ 2.13.0, < 2.13.7 | ≥ 2.12.0, < 2.12.11 | ≥ 2.11.0, < 2.11.15