CVE-2026-25705 | SUSE Rancher up to 2.11.12/2.12.8/2.13.4/2.14.0 UI Handler /var/lib/rancher/ compressedEndpoint path traversal

Inserito da Angelo Barbosa | Mag 13, 2026 | CVE

A vulnerability was found in SUSE Rancher up to 2.11.12/2.12.8/2.13.4/2.14.0. It has been declared as critical. The impacted element is an unknown function in the library /var/lib/rancher/ of the component UI Handler. Executing a manipulation of the argument compressedEndpoint can lead to path traversal: ‘…/…//’.

This vulnerability is tracked as CVE-2026-25705. The attack can be launched remotely. No exploit exists.

It is recommended to upgrade the affected component.

CVE-2026-25705 | SUSE Rancher up to 2.11.12/2.12.8/2.13.4/2.14.0 UI Handler /var/lib/rancher/ compressedEndpoint path traversal

Post correlati

CVE-2025-6373 | D-Link DIR-619L 2.06B01 /goform/formWlSiteSurvey formSetWizard1 curTime stack-based overflow

CVE-2024-5107 | Campcodes Complete Web-Based School Management System 1.0 student_payment_details2.php index sql injection

CVE-2025-15359 | Delta Electronics DVP-12SE11T up to 2.15 out-of-bounds write (PCSA-2025-00022)

CVE-2024-29645 | radare2 5.8.8 parse_die buffer overflow