Information Disclosure Vulnerability in SUSE Rancher AI Agent
CVE-2026-44934

7HIGH

Key Information:

Vendor

Suse

Status
Vendor
CVE Published:
6 July 2026

What is CVE-2026-44934?

An information disclosure vulnerability exists in SUSE Rancher AI Agent version 1.0 prior to 1.0.2. When the DEBUG log level is enabled, sensitive data such as API keys and responses from large language models (LLMs) may be exposed within log files. This exposure can allow local attackers to access and misuse sensitive information or credentials, emphasizing the need for proper log management and security practices.

Affected Version(s)

Rancher 1.0.0 < 1.0.2

References

CVSS V4

Score:
7
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.