CVE-2026-44946 CRITICAL

CVE-2026-44946: SAML Authentication Replay in Rancher

Vendor Suse
Product Rancher
Weakness CWE-294
Published June 30, 2026
Last update July 1, 2026

CVSS base score

9.5/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:H

What the vulnerability does

01Description

A SAML authentication replay vulnerability in Rancher's Assertion Consumer Service (ACS) handler did not enforce one-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,

Key dates

02Disclosure timeline

June 30, 2026 CVE published
July 1, 2026 Record updated