Skip to main content

Rancher AI Agent EUVDEUVD-2026-41858

| CVE-2026-44934 HIGH
Insertion of Sensitive Information Into Debugging Code (CWE-215)
2026-07-06 suse
7.0
CVSS 4.0 · Vendor: suse
Share

Severity by source

Vendor (suse) PRIMARY
7.0 HIGH
CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
6.0 MEDIUM

Local log access and privileged, DEBUG-dependent configuration justify AV:L/PR:H; leaked API keys impact other systems so S:C, and the flaw only discloses data (C:H, I:N, A:N).

3.1 AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
4.0 AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N

Primary rating from Vendor (suse).

CVSS VectorVendor: suse

CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
X

Lifecycle Timeline

2
Patch available
Jul 06, 2026 - 10:01 EUVD
Analysis Generated
Jul 06, 2026 - 09:19 vuln.today

DescriptionCVE.org

A information disclosure when DEBUG loglevel is set in SUSE Rancher AI Agent 1.0 before 1.0.2 could leak API keys or LLM response text with potential sensitive data into logfiles, allowing local attackers to misuse respective gained data or credentials.

AnalysisAI

Information disclosure in SUSE Rancher AI Agent 1.0 before 1.0.2 writes API keys and raw LLM response text (which may contain sensitive data) into logfiles when the DEBUG loglevel is enabled, letting a local attacker with access to those logs harvest credentials and confidential model output. Rated CVSS 4.0 base 7.0, the flaw requires local access and high privileges plus a non-default debug configuration. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Gain local privileged access to host
Delivery
Locate DEBUG-enabled agent logfiles
Exploit
Read leaked API keys and LLM responses
Execution
Replay credential against LLM backend
Impact
Exfiltrate sensitive data

Vulnerability AssessmentAI

Exploitation Exploitation requires that the agent's loglevel be explicitly set to DEBUG (a non-default troubleshooting configuration) so that API keys and LLM response text are actually written to logfiles, AND that the attacker have local access with sufficient privileges to read those logfiles or the downstream log-aggregation store (reflected by AV:L, PR:H, and AT:P in the CVSS 4.0 vector). … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The signals are internally consistent and point to a moderate, conditions-gated risk rather than a mass-exploitation threat. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An operator enables DEBUG logging on Rancher AI Agent 1.0.1 to troubleshoot LLM connectivity, and the agent writes the provider API key and full model responses into its logfile. A local user or a compromised low-integrity process with read access to that log (or to a shared log collector) then extracts the API key and sensitive response text and replays the credential against the LLM backend. …
Remediation Upgrade to SUSE Rancher AI Agent 1.0.2 or later, which is the vendor-released patch (Vendor-released patch: 1.0.2), and consult the advisory at https://github.com/rancher/rancher-ai-agent/security/advisories/GHSA-5r2r-h824-fr5v. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all systems running SUSE Rancher AI Agent 1.0 and verify whether DEBUG loglevel is enabled; disable it in all production environments immediately. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2022-31247 CRITICAL POC
9.1 Sep 07

An Improper Authorization vulnerability in SUSE Rancher, allows any user who has permissions to create/edit cluster role

CVE-2022-21951 MEDIUM POC
6.8 May 25

A Cleartext Transmission of Sensitive Information vulnerability in SUSE Rancher, Rancher allows attackers on the network

CVE-2023-22651 CRITICAL
9.9 May 04

Improper Privilege Management vulnerability in SUSE Rancher allows Privilege Escalation. Rated critical severity (CVSS 9

CVE-2021-25320 CRITICAL
9.9 Jul 15

A Improper Access Control vulnerability in Rancher, allows users in the cluster to make request to cloud providers by cr

CVE-2019-11202 CRITICAL
9.8 Jul 30

An issue was discovered that affects the following versions of Rancher: v2.0.0 through v2.0.13, v2.1.0 through v2.1.8, a

CVE-2026-44939 CRITICAL
9.4 Jun 19

{token}_{clusterId}.yaml. CVSS 4.0 rates this 9.4 (Critical) with a scope-changing impact on subsequent systems, but no

CVE-2026-44946 CRITICAL
9.5 Jun 30

SAML assertion replay in Rancher's Assertion Consumer Service (ACS) handler lets a person-in-the-middle who captures a v

CVE-2026-41052 CRITICAL
9.4 Jun 29

Privilege escalation in SUSE Rancher (Kubernetes management platform) allows a user holding the Project Owner role to im

CVE-2017-7297 HIGH
8.8 Mar 29

Rancher Labs rancher server 1.2.0+ is vulnerable to authenticated users disabling access control via an API call. Rated

CVE-2026-41053 HIGH
8.8 Jun 30

Privilege escalation in Rancher 2.13 (before 2.13.6) and 2.14 (before 2.14.2) lets any authenticated user gain principal

CVE-2023-22648 HIGH
8.8 Jun 01

A Improper Privilege Management vulnerability in SUSE Rancher causes permission changes in Azure AD not to be reflected

CVE-2021-31999 HIGH
8.8 Jul 15

A Reliance on Untrusted Inputs in a Security Decision vulnerability in Rancher allows users in the cluster to act as oth

Share

EUVD-2026-41858 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy