Loading market data...
← Back to CVE feed

CVE-2026-41053

HIGH CVSS 8.8 View on NVD ↗

Description

Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting principal access to any logged in user, in 2.13 before 2.13.6 and 2.14 before 2.14.2.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Published: Jun 30, 2026 12:16 UTC Modified: Jun 30, 2026 14:33 UTC