| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-25702 | nftables disabled due to incorrect kernel backport | SUSE | SUSE Linux Enterprise Server | High | 7.3 | 2026-03-05 07:00:19 | Deep Dive |
| CVE-2025-62879 | Rancher Backup Operator pod's logs leak S3 tokens | SUSE | Rancher | Medium | 6.8 | 2026-03-04 15:08:12 | Deep Dive |
| CVE-2025-62878 | Local Path Provisioner vulnerable to Path Traversal via parameters.pathPattern | SUSE | Rancher | Critical | 9.9 | 2026-02-25 10:49:30 | Deep Dive |
| CVE-2025-67601 | Rancher CLI skips TLS verification on Rancher CLI login command | SUSE | rancher | High | 8.3 | 2026-02-25 10:36:58 | Deep Dive |
| CVE-2025-67860 | NeuVector scanner insecurely handles passwords as command arguments | SUSE | harvester | Low | 3.8 | 2026-02-25 10:33:26 | Deep Dive |
| CVE-2025-62877 | Harvest may expose OS default ssh login password via SUSE Virtualization Interactive Installer | SUSE | harvester | Critical | 9.8 | 2026-01-08 12:29:07 | Deep Dive |
| CVE-2025-66001 | NeuVector OpenID Connect is vulnerable to man-in-the-middle (MITM) | SUSE | neuvector | High | 8.8 | 2026-01-08 10:23:19 | Deep Dive |
| CVE-2025-62875 | Local DoS in OpenSMTPD via UNIX domain socket smtpd.sock | SUSE | openSUSE Tumbleweed | 中危 | - | 2025-11-20 16:02:12 | Deep Dive |
| CVE-2025-62876 | LightDM KDE Greeter 安全漏洞 | SUSE | openSUSE | 中危 | - | 2025-11-12 12:57:54 | Deep Dive |
| CVE-2025-53883 | spacewalk-java has various XSS issues on search page | SUSE | Container suse manager 5.0 | - | - | 2025-10-30 10:50:08 | Deep Dive |
| CVE-2025-53880 | susemanager-tftpsync-recv allows arbitrary file creation and deletion due to path traversal | SUSE | Container suse/manager/4.3/proxy-httpd:latest | - | - | 2025-10-30 10:31:16 | Deep Dive |
| CVE-2025-54471 | NeuVector is shipping cryptographic material into its binary | SUSE | neuvector | Medium | 6.5 | 2025-10-30 09:45:57 | Deep Dive |
| CVE-2025-54469 | NeuVector Enforcer is vulnerable to Command Injection and Buffer overflow | SUSE | neuvector | Critical | 9.9 | 2025-10-30 09:41:57 | Deep Dive |
| CVE-2025-54470 | NeuVector telemetry sender is vulnerable to MITM and DoS | SUSE | neuvector | High | 8.6 | 2025-10-30 09:38:58 | Deep Dive |
| CVE-2024-58269 | Rancher exposes sensitive information through audit logs | SUSE | rancher | Medium | 4.3 | 2025-10-29 14:58:07 | Deep Dive |
| CVE-2023-32199 | Rancher user retains access to clusters despite Global Role removal | SUSE | rancher | Medium | 4.3 | 2025-10-29 14:54:04 | Deep Dive |
| CVE-2024-58260 | Rancher update on users can deny the service to the admin | SUSE | rancher | High | 7.6 | 2025-10-02 12:09:46 | Deep Dive |
| CVE-2024-58267 | Rancher CLI SAML authentication is vulnerable to phishing attacks | SUSE | rancher | High | 8.0 | 2025-10-02 12:08:31 | Deep Dive |
| CVE-2025-54468 | Rancher sends sensitive information to external services through the `/meta/proxy` endpoint | SUSE | rancher | Medium | 4.7 | 2025-10-02 10:00:19 | Deep Dive |
| CVE-2025-8077 | NeuVector admin account has insecure default password | SUSE | neuvector | Critical | 9.8 | 2025-09-17 12:33:38 | Deep Dive |