GO-2025-4074 Rancher exposes sensitive information through audit logs in github.com/rancher/rancher

Rancher exposes sensitive information through audit logs in github.com/rancher/rancher...

GO-2025-3983 Rancher update on users can deny the service to the admin in github.com/rancher/rancher

Rancher update on users can deny the service to the admin in github.com/rancher/rancher. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability...

GO-2025-3923 Rancher affected by unauthenticated Denial of Service in github.com/rancher/rancher

Rancher affected by unauthenticated Denial of Service in github.com/rancher/rancher. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability scanners,...

PT-2025-36650

Rancher Fleet Helm Values are stored inside BundleDeployment in plain text in github.com/rancher/fleet...

Unauthorized Resource Access

github.com/rancher/steve is vulnerable to Unauthorized Resource Access. The vulnerability is due to improper authorization checks, allowing users with minimal generic permissions to access and watch restricted resources...