216.73.217.50

CVE-2026-44946

· Published 30/06/2026 15:18 · Author: The MITRE Corporation

Labels: CVE-2026-44946

Essential information

Published
30/06/2026 15:18
Modified
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
9.5 CRITICAL (v4.0)
CISA KEV
No
CWE
CWE-294
CVSS vector

CVSS metrics

Description

A SAML authentication replay vulnerability in Rancher's Assertion Consumer Service (ACS) handler did not enforce one-time use of SAML assertion, potentially allowing person in the middle attacks against Rancher, affecting Rancher 2.14.0 before 2.14.3,

NVD status

NVD
View on NVD