SUSE Rancher - Harvester master version - CVE Scans - 2026-06-12

How to use this page

You can click a column header to sort by column.
Use the search bar below to filter the results by image (and version/tag), if the image is mirrored or made by SUSE (true/false),
release, affected binary, vulnerable dependency (and its version), vulnerability ID (CVE, GHSA, SUSE-SU etc.), severity,
status (if affected or not affected/false-positive), justification (for false-positives),
vulnerability type (related to the programming language or container OS).
The search functionality might execute a bit slow depending on the number of vulnerabilities displayed in the page.
False-positive CVEs that are removed with VEX have the status as "not affected" with the severity set to "none",
because they do not affect the binary/package/image. The justification explains why they are false-positives,
according to the VEX statuses as explained in KB 000021573.
For further instructions about scanned versions, scanning frequency, tooling and false-positives, please consult the main instructions.
The severity (CVSS rating) of some CVEs in the portal might differ from the original severity reported by some vendors and security scanners.
This happens, because SUSE recalculates the CVSS rating of CVEs based on criteria, like: applicability and difficulty of the issue being
exploited in the wild; how it can actually affect the confidentiality, integrity and availability of SUSE's products etc. CVEs that had their CVSS
severity rating changed, either decreased or increased, will have the distinctive tag '*' close to its severity.

Search:

Image	Mirrored	Release	Binary/Package	Dependency	Vulnerability ID (CVE)	Severity	Status	Justification (for status not affected)	Type (language or OS)
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-31789	CRITICAL	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28387	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28388	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28389	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28390	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-45447	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-31789	CRITICAL	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28387	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28388	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28389	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28390	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-45447	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	musl	musl@1.2.5-r21	CVE-2026-40200	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	musl-utils	musl-utils@1.2.5-r21	CVE-2026-40200	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	zlib	zlib@1.3.1-r2	CVE-2026-22184	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
kubeovn/kube-ovn:v1.16.2	false	Harvester master	libssl3t64	libssl3t64@3.0.13-0ubuntu3.9	CVE-2026-45447	HIGH	affected		ubuntu
kubeovn/kube-ovn:v1.16.2	false	Harvester master	libssl3t64-fips	libssl3t64-fips@3.0.13-0ubuntu3.9	CVE-2026-45447	HIGH	affected		ubuntu
kubeovn/kube-ovn:v1.16.2	false	Harvester master	openssl	openssl@3.0.13-0ubuntu3.9	CVE-2026-45447	HIGH	affected		ubuntu
longhornio/backing-image-manager:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	glibc-devel	glibc-devel@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-cli:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	glibc-devel	glibc-devel@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-manager:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	glibc-devel	glibc-devel@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-ui:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-ui:v1.12.0	false	Harvester master	nginx	nginx@1.21.5-150600.10.18.1	SUSE-SU-2026:2307-1	HIGH	affected		sles
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/apache/thrift@v0.21.0	CVE-2026-41602	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/go-git/go-billy/v5@v5.6.2	CVE-2026-44973	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/go-git/go-billy/v5@v5.6.2	CVE-2026-44740	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/go-git/go-git/v5@v5.14.0	CVE-2026-45022	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/go-jose/go-jose/v3@v3.0.4	CVE-2026-34986	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/go-jose/go-jose/v4@v4.1.0	CVE-2026-34986	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/grafana/grafana@12.1.1	CVE-2025-41115	CRITICAL	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/grafana/grafana@12.1.1	CVE-2026-27877	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/grafana/tempo@v1.5.1-0.20250529124718-87c2dc380cec	CVE-2026-21728	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/grafana/tempo@v1.5.1-0.20250529124718-87c2dc380cec	CVE-2026-28377	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/jackc/pgx/v5@v5.7.5	CVE-2026-33816	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/openfga/openfga@v1.8.13	CVE-2025-64751	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/prometheus/prometheus@v0.303.1	CVE-2026-42151	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/prometheus/prometheus@v0.303.1	CVE-2026-42154	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	google.golang.org/grpc@v1.73.0	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	github.com/grafana/grafana@12.1.1	CVE-2025-41115	CRITICAL	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	github.com/grafana/grafana@12.1.1	CVE-2026-27877	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	github.com/grafana/grafana@12.1.1	CVE-2025-41115	CRITICAL	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	github.com/grafana/grafana@12.1.1	CVE-2026-27877	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libopenssl3	libopenssl3@3.1.4-150600.5.33.1	SUSE-SU-2026:0312-1	CRITICAL	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libopenssl3	libopenssl3@3.1.4-150600.5.33.1	SUSE-SU-2025:03442-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libopenssl3	libopenssl3@3.1.4-150600.5.33.1	SUSE-SU-2026:1215-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libpython3_11-1_0	libpython3_11-1_0@3.11.13-150600.3.30.1	SUSE-SU-2025:02717-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libpython3_11-1_0	libpython3_11-1_0@3.11.13-150600.3.30.1	SUSE-SU-2026:0767-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libpython3_11-1_0	libpython3_11-1_0@3.11.13-150600.3.30.1	SUSE-SU-2026:1349-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311	python311@3.11.13-150600.3.30.1	SUSE-SU-2025:02717-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311	python311@3.11.13-150600.3.30.1	SUSE-SU-2026:0767-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311	python311@3.11.13-150600.3.30.1	SUSE-SU-2026:1349-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311-base	python311-base@3.11.13-150600.3.30.1	SUSE-SU-2025:02717-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311-base	python311-base@3.11.13-150600.3.30.1	SUSE-SU-2026:0767-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311-base	python311-base@3.11.13-150600.3.30.1	SUSE-SU-2026:1349-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	pyasn1@0.6.1	CVE-2026-23490	HIGH	affected		python-pkg
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	pyasn1@0.6.1	CVE-2026-30922	HIGH	affected		python-pkg
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	urllib3@2.5.0	CVE-2025-66418	HIGH	affected		python-pkg
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	urllib3@2.5.0	CVE-2025-66471	HIGH	affected		python-pkg
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	urllib3@2.5.0	CVE-2026-21441	HIGH	affected		python-pkg
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	urllib3@2.5.0	CVE-2026-44431	HIGH	affected		python-pkg
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	google.golang.org/grpc@v1.68.1	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	github.com/opencontainers/selinux@v1.11.1	CVE-2025-52881	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	go.opentelemetry.io/otel@v1.40.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	go.opentelemetry.io/otel/sdk@v1.40.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	busybox	busybox@1.37.0-150700.18.15.1	SUSE-SU-2026:2054-1	HIGH	affected		sles
rancher/fleet-agent:v0.15.2	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/fleet:v0.15.2	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/fleet:v0.15.2	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	busybox	busybox@1.37.0-150700.18.15.1	SUSE-SU-2026:2054-1	HIGH	affected		sles
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/hardened-coredns:v1.14.3-build20260511	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/hardened-dns-node-cache:1.26.8-build20260511	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/hardened-flannel:v0.28.4-build20260511	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	glibc	glibc@2.40-160000.4.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	glibc-locale-base	glibc-locale-base@2.40-160000.4.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	github.com/golang/glog@v0.0.0-20160126235308-23def4e6c14b	CVE-2024-45339	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	go.opentelemetry.io/otel/sdk@v1.34.0	CVE-2026-24051	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	go.opentelemetry.io/otel/sdk@v1.34.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	google.golang.org/grpc@v1.72.1	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-load-balancer-webhook:master-head	false	Harvester master	usr/bin/harvester-load-balancer-webhook	github.com/rancher/rancher@v0.0.0-20250827213702-1daa918b630b	CVE-2019-12274	HIGH	affected		gobinary
rancher/harvester-load-balancer-webhook:master-head	false	Harvester master	usr/bin/harvester-load-balancer-webhook	github.com/rancher/rancher@v0.0.0-20250827213702-1daa918b630b	CVE-2021-36775	HIGH	affected		gobinary
rancher/harvester-load-balancer-webhook:master-head	false	Harvester master	usr/bin/harvester-load-balancer-webhook	github.com/rancher/rancher@v0.0.0-20250827213702-1daa918b630b	CVE-2025-67601	HIGH	affected		gobinary
rancher/harvester-load-balancer-webhook:master-head	false	Harvester master	usr/bin/harvester-load-balancer-webhook	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/harvester-load-balancer:master-head	false	Harvester master	usr/bin/harvester-load-balancer	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	github.com/harvester/harvester@v1.5.1	CVE-2025-71261	HIGH	affected		gobinary
rancher/harvester-node-disk-manager:master-head	false	Harvester master	usr/bin/node-disk-manager	github.com/harvester/harvester@v1.5.1	CVE-2025-71261	HIGH	affected		gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	github.com/harvester/harvester@v0.0.2-0.20250725061328-e679a719d15d	CVE-2025-71261	HIGH	affected		gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	google.golang.org/grpc@v1.56.3	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	kubevirt.io/kubevirt@v1.5.0	CVE-2025-64324	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2025-61729	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-32280	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-39820	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-42499	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-22874	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-61729	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-32280	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-39836	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/containerd/containerd@v1.7.12	CVE-2024-25621	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/distribution/distribution@v2.8.1+incompatible	CVE-2026-35172	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/docker@v23.0.8+incompatible	CVE-2024-41110	CRITICAL	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/docker@v23.0.8+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/docker@v23.0.8+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/docker@v23.0.8+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/docker@v23.0.8+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/go-git/go-billy/v5@v5.5.0	CVE-2026-44973	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/go-git/go-billy/v5@v5.5.0	CVE-2026-44740	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/go-git/go-git/v5@v5.11.0	CVE-2025-21613	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/go-git/go-git/v5@v5.11.0	CVE-2025-21614	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/go-git/go-git/v5@v5.11.0	CVE-2026-45022	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/moby/moby@v25.0.1+incompatible	CVE-2024-36623	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/moby/moby@v25.0.1+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/moby/moby@v25.0.1+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/moby/moby@v25.0.1+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/moby/moby@v25.0.1+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2024-45337	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2025-22869	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	github.com/harvester/harvester@v1.8.0-dev-20260301.0.20260309085342-92352be5ca39	CVE-2025-71261	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/containerd/containerd@v1.7.27	CVE-2024-25621	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/containerd/containerd@v1.7.27	CVE-2026-46680	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/go-jose/go-jose/v3@v3.0.3	CVE-2026-34986	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2019-12274	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2021-36775	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2025-67601	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/containerd/containerd@v1.7.27	CVE-2024-25621	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/containerd/containerd@v1.7.27	CVE-2026-46680	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/go-jose/go-jose/v3@v3.0.3	CVE-2026-34986	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2019-12274	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2021-36775	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2025-67601	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/klipper-helm:v0.10.0-build20260513	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/klipper-helm:v0.10.0-build20260513	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/klipper-helm:v0.10.0-build20260513	false	Harvester master	usr/bin/helm	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-33811	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-33814	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-39820	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-39836	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-42499	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-39820	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-42499	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	busybox	busybox@1.37.0-150700.18.12.1	SUSE-SU-2026:0759-1	HIGH	affected		sles
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	busybox	busybox@1.37.0-150700.18.12.1	SUSE-SU-2026:2054-1	HIGH	affected		sles
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2025-61729	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-32280	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-33814	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-39836	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-39820	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-42499	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-39820	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-42499	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-39820	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-39836	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-42499	HIGH	affected		gobinary
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libcap2	libcap2@1:2.66-4	CVE-2026-4878	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2026-33845	CRITICAL	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2026-42010	CRITICAL	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2025-32988	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2025-32990	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2026-33846	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2026-3833	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2026-42009	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libldap-2.5-0	libldap-2.5-0@2.5.13+dfsg-5	CVE-2023-2953	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	liblzma5	liblzma5@5.4.1-0.2	CVE-2025-31115	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2024-10979	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2025-1094	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2025-8714	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2025-8715	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-2004	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-2005	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-2006	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-6473	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-6477	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-6478	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-31789	CRITICAL	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2025-15467	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2025-69421	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-28387	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-28388	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-28389	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-28390	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-45447	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	zlib1g	zlib1g@1:1.2.13.dfsg-1	CVE-2023-45853	CRITICAL	affected		debian
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-33811	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-39820	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-42499	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	google.golang.org/protobuf@v1.28.1	CVE-2024-24786	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-33811	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-39820	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-42499	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2025-15467	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2025-69421	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2025-15467	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2025-69421	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	musl	musl@1.2.5-r1	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	musl-utils	musl-utils@1.2.5-r0	CVE-2025-26519	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	musl-utils	musl-utils@1.2.5-r0	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	ruby	ruby@3.3.6-r0	CVE-2025-27219	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	ruby	ruby@3.3.6-r0	CVE-2025-61594	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	ruby-libs	ruby-libs@3.3.6-r0	CVE-2025-27219	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	ruby-libs	ruby-libs@3.3.6-r0	CVE-2025-61594	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	zlib	zlib@1.3.1-r1	CVE-2026-22184	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	activesupport@7.1.1	CVE-2026-33176	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	addressable@2.8.5	CVE-2026-35611	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	addressable@2.8.6	CVE-2026-35611	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	erb@4.0.2	CVE-2026-41316	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	google-protobuf@3.21.12	CVE-2024-7254	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	jwt@2.10.1	CVE-2026-45363	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.3.4.1	CVE-2026-42257	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.3.4.1	CVE-2026-42258	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.3.4.1	CVE-2026-42245	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.3.4.1	CVE-2026-42246	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.4.19	CVE-2026-42257	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.4.19	CVE-2026-42258	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.4.19	CVE-2026-42245	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.4.19	CVE-2026-42246	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	nokogiri@1.18.4	GHSA-353f-x4gh-cqq8	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	nokogiri@1.18.4	GHSA-c4rq-3m3g-8wgx	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2025-46727	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2025-61770	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2025-61771	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2025-61772	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2025-61919	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2026-22860	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2026-34785	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2026-34827	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2026-34829	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rexml@3.2.6	CVE-2024-49761	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rexml@3.3.2	CVE-2024-49761	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	uri@0.12.2	CVE-2025-61594	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	webrick@1.8.1	CVE-2024-47220	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	zlib@3.0.0	CVE-2026-27820	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-45447	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-45447	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	musl	musl@1.2.5-r21	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	musl-utils	musl-utils@1.2.5-r21	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	zlib	zlib@1.3.1-r2	CVE-2026-22184	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	google.golang.org/grpc@v1.77.0	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2025-15467	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2025-69421	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-45447	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libexpat	libexpat@2.7.1-r0	CVE-2025-59375	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libexpat	libexpat@2.7.1-r0	CVE-2026-25210	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2025-64720	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2025-65018	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2025-66293	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2026-22695	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2026-22801	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2026-25646	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2025-15467	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2025-69421	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-45447	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libxml2	libxml2@2.13.8-r0	CVE-2025-49794	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libxml2	libxml2@2.13.8-r0	CVE-2025-49795	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libxml2	libxml2@2.13.8-r0	CVE-2025-49796	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libxml2	libxml2@2.13.8-r0	CVE-2026-6732	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	musl	musl@1.2.5-r10	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	musl-utils	musl-utils@1.2.5-r10	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	nghttp2-libs	nghttp2-libs@1.65.0-r0	CVE-2026-27135	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	pcre2	pcre2@10.43-r1	CVE-2025-58050	CRITICAL	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	zlib	zlib@1.3.1-r2	CVE-2026-22184	HIGH	affected		alpine
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	google.golang.org/grpc@v1.60.1	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-33811	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-39820	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-42499	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	github.com/prometheus/prometheus@v0.305.0	CVE-2026-42151	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	github.com/prometheus/prometheus@v0.305.0	CVE-2026-42154	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	github.com/prometheus/prometheus@v0.301.0	CVE-2026-42151	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	github.com/prometheus/prometheus@v0.301.0	CVE-2026-42154	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	github.com/prometheus/prometheus@v0.305.0	CVE-2026-42151	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	github.com/prometheus/prometheus@v0.305.0	CVE-2026-42154	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	glibc	glibc@2.40-160000.3.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	glibc-devel	glibc-devel@2.40-160000.3.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	glibc-locale-base	glibc-locale-base@2.40-160000.3.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libcap-progs	libcap-progs@2.73-160000.2.2	SUSE-SU-2026:21373-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	xz	xz@5.8.1-160000.2.2	SUSE-SU-2026:21848-1	HIGH	affected		sles
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	google.golang.org/grpc@v1.73.0	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2025-61729	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-32280	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-33811	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-33814	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-39820	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-39836	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-42499	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	google.golang.org/grpc@v1.73.0	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2025-61729	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-32280	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-33811	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-33814	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-39820	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-39836	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-42499	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/go-jose/go-jose/v3@v3.0.4	CVE-2026-34986	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/microsoft/kiota-http-go@v1.4.4	CVE-2026-44503	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/russellhaering/goxmldsig@v1.4.0	CVE-2026-33487	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	go.opentelemetry.io/otel/sdk@v1.42.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/rancher:v2.14.2	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	github.com/harvester/harvester@v0.0.0-20251016061812-c537e12b7f09	CVE-2025-71261	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	kubevirt.io/kubevirt@v1.6.0	CVE-2025-64324	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-32280	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/bandwidth	stdlib@v1.25.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/bandwidth	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/bandwidth	stdlib@v1.25.9	CVE-2026-39820	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/bandwidth	stdlib@v1.25.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/bandwidth	stdlib@v1.25.9	CVE-2026-42499	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/cni	stdlib@v1.25.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/cni	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/cni	stdlib@v1.25.9	CVE-2026-39820	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/cni	stdlib@v1.25.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/cni	stdlib@v1.25.9	CVE-2026-42499	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	google.golang.org/grpc@v1.72.2	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.3-k3s1	CVE-2026-46680	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-32280	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/firewall	stdlib@v1.25.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/firewall	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/firewall	stdlib@v1.25.9	CVE-2026-39820	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/firewall	stdlib@v1.25.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/firewall	stdlib@v1.25.9	CVE-2026-42499	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	google.golang.org/grpc@v1.72.2	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/go-jose/go-jose/v3@v3.0.4	CVE-2026-34986	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/microsoft/kiota-http-go@v1.4.4	CVE-2026-44503	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/russellhaering/goxmldsig@v1.4.0	CVE-2026-33487	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	go.opentelemetry.io/otel/sdk@v1.42.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	github.com/docker/docker@v25.0.8+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	github.com/docker/docker@v25.0.8+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	github.com/docker/docker@v25.0.8+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	github.com/docker/docker@v25.0.8+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-32280	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-33811	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-39820	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-42499	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	github.com/containerd/containerd/v2@v2.2.3-k3s1	CVE-2026-46680	HIGH	affected		gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	github.com/docker/docker@v27.3.1+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.3-k3s1	CVE-2026-46680	HIGH	affected		gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/ctr	github.com/containerd/containerd/v2@v2.2.3-k3s1	CVE-2026-46680	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	busybox	busybox@1.37.0-150700.18.15.1	SUSE-SU-2026:2054-1	HIGH	affected		sles
rancher/shell:v0.7.0	false	Harvester master	glibc	glibc@2.38-150600.14.43.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/shell:v0.7.0	false	Harvester master	glibc	glibc@2.38-150600.14.43.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/shell:v0.7.0	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
rancher/shell:v0.7.0	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-32280	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-33814	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-39836	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/containerd/containerd@v1.7.29	CVE-2026-46680	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/docker/docker@v28.5.2+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/docker/docker@v28.5.2+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/docker/docker@v28.5.2+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/docker/docker@v28.5.2+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/go-git/go-billy/v5@v5.7.0	CVE-2026-44973	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/go-git/go-billy/v5@v5.7.0	CVE-2026-44740	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/go-git/go-git/v5@v5.16.3	CVE-2026-45022	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/go-jose/go-jose/v4@v4.0.5	CVE-2026-34986	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/hashicorp/go-getter@v1.8.3	CVE-2026-4660	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-39820	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-42499	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-39820	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-39836	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-42499	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2025-61729	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-32280	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-33811	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-33814	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-39820	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-39836	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-42499	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/system-agent:v0.3.16-suc	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-39820	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-61729	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-39820	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-42499	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-32280	HIGH	affected		gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-39836	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	google.golang.org/grpc@v1.68.1	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2025-22874	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2025-61729	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2026-32280	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2026-33811	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2026-33814	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2026-39820	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2026-39836	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2026-42499	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	go.opentelemetry.io/otel@v1.40.0	CVE-2026-29181	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-32280	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-33811	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-33814	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-39820	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-39836	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-42499	HIGH	affected		gobinary
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	boost-license1_66_0	boost-license1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libboost_system1_66_0	libboost_system1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libboost_thread1_66_0	libboost_thread1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libbrotlicommon1	libbrotlicommon1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libbrotlidec1	libbrotlidec1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libudev1	libudev1@254.25-150600.4.40.1	SUSE-SU-2026:1040-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libxml2-2	libxml2-2@2.12.10-150700.4.3.1	SUSE-SU-2025:02617-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	boost-license1_66_0	boost-license1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libboost_system1_66_0	libboost_system1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libboost_thread1_66_0	libboost_thread1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libbrotlidec1	libbrotlidec1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0018-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0373-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libudev1	libudev1@254.25-150600.4.40.1	SUSE-SU-2026:1040-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libxml2-2	libxml2-2@2.12.10-150700.4.3.1	SUSE-SU-2025:02617-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	boost-license1_66_0	boost-license1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libboost_system1_66_0	libboost_system1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libboost_thread1_66_0	libboost_thread1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libbrotlicommon1	libbrotlicommon1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libbrotlidec1	libbrotlidec1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0018-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0373-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.49.1-150000.3.27.1	SUSE-SU-2025:02672-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libudev1	libudev1@254.25-150600.4.40.1	SUSE-SU-2026:1040-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libxml2-2	libxml2-2@2.12.10-150700.4.3.1	SUSE-SU-2025:02617-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libboost_system1_66_0	libboost_system1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libbrotlicommon1	libbrotlicommon1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libbrotlidec1	libbrotlidec1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libgmodule-2_0-0	libgmodule-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0018-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libgmodule-2_0-0	libgmodule-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0373-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.6.2	SUSE-SU-2025:02595-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.6.2	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.49.1-150000.3.27.1	SUSE-SU-2025:02672-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libudev1	libudev1@254.25-150600.4.40.1	SUSE-SU-2026:1040-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libxml2-2	libxml2-2@2.12.10-150700.4.3.1	SUSE-SU-2025:02617-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	qemu-img	qemu-img@9.2.4-150700.3.5.1	SUSE-SU-2026:0288-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	boost-license1_66_0	boost-license1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libboost_system1_66_0	libboost_system1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libboost_thread1_66_0	libboost_thread1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libbrotlidec1	libbrotlidec1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0018-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0373-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libudev1	libudev1@254.25-150600.4.40.1	SUSE-SU-2026:1040-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libxml2-2	libxml2-2@2.12.10-150700.4.3.1	SUSE-SU-2025:02617-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libboost_system1_66_0	libboost_system1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libboost_thread1_66_0	libboost_thread1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libbrotlicommon1	libbrotlicommon1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libbrotlidec1	libbrotlidec1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.49.1-150000.3.27.1	SUSE-SU-2025:02672-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libxml2-2	libxml2-2@2.12.10-150700.4.3.1	SUSE-SU-2025:02617-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	boost-license1_66_0	boost-license1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libboost_system1_66_0	libboost_system1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libbrotlicommon1	libbrotlicommon1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libbrotlidec1	libbrotlidec1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0018-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0373-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libgmodule-2_0-0	libgmodule-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0018-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libgmodule-2_0-0	libgmodule-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0373-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.6.2	SUSE-SU-2025:02595-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.6.2	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.49.1-150000.3.27.1	SUSE-SU-2025:02672-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libudev1	libudev1@254.25-150600.4.40.1	SUSE-SU-2026:1040-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libxml2-2	libxml2-2@2.12.10-150700.4.3.1	SUSE-SU-2025:02617-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	CRITICAL	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	qemu-img	qemu-img@9.2.4-150700.3.5.1	SUSE-SU-2026:0288-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.17.1	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	xz	xz@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-api:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-api:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-controller:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-controller:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.17.1	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	gnutls	gnutls@3.8.3-150600.4.17.1	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.17.1	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	xz	xz@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-operator:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-39825	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-39825	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-39825	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
longhornio/backing-image-manager:v1.12.0	false	Harvester master	usr/local/bin/backing-image-manager	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-node-driver-registrar:v2.17.0	false	Harvester master	csi-node-driver-registrar	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/livenessprobe:v2.19.0	false	Harvester master	livenessprobe	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/grpc_health_probe	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/go-spdk-helper	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/grpc_health_probe	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-39825	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	none	not affected	vulnerable code not in execute path	sles
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2025-22869	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/oauth2@v0.24.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/buger/jsonparser@v1.1.1	CVE-2026-32285	none	not affected	vulnerable code not in execute path	gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libexpat1	libexpat1@2.7.1-150400.3.28.1	SUSE-SU-2025:03624-1	none	not affected	vulnerable code not in execute path	sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libexpat1	libexpat1@2.7.1-150400.3.28.1	SUSE-SU-2026:1166-1	none	not affected	vulnerable code not in execute path	sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	none	not affected	vulnerable code not in execute path	sles
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260511	false	Harvester master	pod_nanny	golang.org/x/oauth2@v0.24.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	none	not affected	vulnerable code not in execute path	sles
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/bandwidth	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/bond	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/bridge	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/dhcp	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/dummy	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/firewall	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/flannel	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/host-device	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/host-local	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/ipvlan	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/loopback	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/macvlan	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/portmap	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/ptp	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/sbr	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/static	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/tap	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/tuning	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/vlan	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260511	false	Harvester master	opt/cni/bin/vrf	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260511	false	Harvester master	cluster-proportional-autoscaler	golang.org/x/oauth2@v0.23.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/bandwidth	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/bond	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/bridge	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/dhcp	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/dummy	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/firewall	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/flannel	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/host-device	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/host-local	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/ipvlan	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/loopback	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/macvlan	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/portmap	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/ptp	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/sbr	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/static	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/tap	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/tuning	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/vlan	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260511	false	Harvester master	opt/cni/bin/vrf	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-coredns:v1.14.3-build20260511	false	Harvester master	busybox	busybox@1.37.0-150700.18.15.1	SUSE-SU-2026:2054-1	none	not affected	vulnerable code not in execute path	sles
rancher/hardened-dns-node-cache:1.26.8-build20260511	false	Harvester master	busybox	busybox@1.37.0-150700.18.15.1	SUSE-SU-2026:2054-1	none	not affected	vulnerable code not in execute path	sles
rancher/hardened-etcd:v3.6.7-k3s1-build20260512	false	Harvester master	usr/local/bin/etcd	go.opentelemetry.io/otel/sdk@v1.34.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.7-k3s1-build20260512	false	Harvester master	usr/local/bin/etcd	go.opentelemetry.io/otel/sdk@v1.34.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.7-k3s1-build20260512	false	Harvester master	usr/local/bin/etcd	google.golang.org/grpc@v1.71.1	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.7-k3s1-build20260512	false	Harvester master	usr/local/bin/etcd	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.7-k3s1-build20260512	false	Harvester master	usr/local/bin/etcdctl	google.golang.org/grpc@v1.71.1	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.7-k3s1-build20260512	false	Harvester master	usr/local/bin/etcdctl	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-flannel:v0.28.4-build20260511	false	Harvester master	busybox	busybox@1.37.0-150700.18.15.1	SUSE-SU-2026:2054-1	none	not affected	vulnerable code not in execute path	sles
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	liblzma5	liblzma5@5.8.1-160000.2.2	SUSE-SU-2026:21848-1	none	not affected	vulnerable code not in execute path	sles
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	xz	xz@5.8.1-160000.2.2	SUSE-SU-2026:21848-1	none	not affected	vulnerable code not in execute path	sles
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-apiserver	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-apiserver	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-apiserver	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-apiserver	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-apiserver	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-apiserver	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-apiserver	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-apiserver	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-apiserver	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-apiserver	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-controller-manager	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-controller-manager	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-controller-manager	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-controller-manager	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-controller-manager	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-controller-manager	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-controller-manager	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-controller-manager	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-controller-manager	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-controller-manager	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-proxy	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-proxy	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-proxy	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-proxy	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-proxy	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-proxy	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-proxy	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-proxy	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-proxy	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-proxy	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-scheduler	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-scheduler	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-scheduler	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-scheduler	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-scheduler	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-scheduler	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-scheduler	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-scheduler	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-scheduler	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kube-scheduler	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubelet	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubelet	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubelet	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubelet	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubelet	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubelet	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubelet	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubelet	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubelet	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.5-rke2r1-build20260512	false	Harvester master	usr/local/bin/kubelet	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	google.golang.org/grpc@v1.73.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	google.golang.org/grpc@v1.73.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.5.0-build20260513	false	Harvester master	snapshot-controller	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	github.com/golang-jwt/jwt/v4@v4.2.0	CVE-2025-30204	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	github.com/docker/cli@v27.1.1+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	google.golang.org/grpc@v1.68.1	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-25679	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-27137	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-32280	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-32281	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-32283	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-33810	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-39825	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/cli@v23.0.4+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	github.com/docker/cli@v27.1.1+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2025-22869	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/docker/cli@v25.0.3+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/moby/spdystream@v0.5.0	CVE-2026-35469	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	google.golang.org/grpc@v1.75.1	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/docker/cli@v25.0.3+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/moby/spdystream@v0.5.0	CVE-2026-35469	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	google.golang.org/grpc@v1.75.1	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/klipper-helm:v0.10.0-build20260513	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/klipper-helm:v0.10.0-build20260513	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/klipper-helm:v0.10.0-build20260513	false	Harvester master	usr/bin/helm	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-32280	none	not affected	vulnerable code not in execute path	gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-39825	none	not affected	vulnerable code not present	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-32280	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	golang.org/x/oauth2@v0.21.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-39825	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	go.opentelemetry.io/otel/sdk@v1.21.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	go.opentelemetry.io/otel/sdk@v1.21.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2024-45337	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2025-22869	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/oauth2@v0.18.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2024-34156	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-32280	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-61726	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2025-22869	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/oauth2@v0.25.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-61726	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libcap2	libcap2@2.73-160000.2.2	SUSE-SU-2026:21373-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	liblzma5	liblzma5@5.8.1-160000.2.2	SUSE-SU-2026:21848-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libopenssl-3-devel	libopenssl-3-devel@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libopenssl3	libopenssl3@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libpython3_13-1_0	libpython3_13-1_0@3.13.12-160000.1.1	SUSE-SU-2026:21178-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libsystemd0	libsystemd0@257.10-160000.1.1	SUSE-SU-2026:21144-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libudev1	libudev1@257.10-160000.1.1	SUSE-SU-2026:21144-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	openssl-3	openssl-3@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	python313-base	python313-base@3.13.12-160000.1.1	SUSE-SU-2026:21178-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	tar	tar@1.35-160000.2.2	SUSE-SU-2026:21143-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-39825	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-32281	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-33810	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-39825	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	github.com/jackc/pgx/v5@v5.8.0	CVE-2026-33816	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	google.golang.org/grpc@v1.71.1	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2025-61726	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	github.com/jackc/pgx/v5@v5.8.0	CVE-2026-33816	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	github.com/golang-jwt/jwt/v4@v4.5.0	CVE-2025-30204	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-42504	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	github.com/docker/cli@v29.1.5+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	github.com/docker/docker@v27.3.1+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	github.com/docker/docker@v27.3.1+incompatible	CVE-2026-41567	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	github.com/docker/docker@v27.3.1+incompatible	CVE-2026-42306	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	github.com/go-jose/go-jose/v4@v4.1.3	CVE-2026-34986	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	go.opentelemetry.io/otel@v1.38.0	CVE-2026-29181	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	go.opentelemetry.io/otel/sdk@v1.38.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	go.opentelemetry.io/otel/sdk@v1.38.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/containerd-shim-runc-v2	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/crictl	github.com/buger/jsonparser@v1.1.1	CVE-2026-32285	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/crictl	github.com/docker/docker@v27.1.1+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/crictl	github.com/docker/docker@v27.1.1+incompatible	CVE-2026-41567	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/crictl	github.com/docker/docker@v27.1.1+incompatible	CVE-2026-42306	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/crictl	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/crictl	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/crictl	google.golang.org/grpc@v1.75.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/crictl	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/ctr	go.opentelemetry.io/otel@v1.38.0	CVE-2026-29181	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/ctr	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubectl	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubectl	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubectl	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubectl	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubectl	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubectl	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubectl	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubelet	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubelet	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubelet	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubelet	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubelet	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubelet	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubelet	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubelet	stdlib@v1.25.9	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubelet	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/kubelet	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.5-rke2r1	false	Harvester master	bin/runc	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	vim	vim@9.2.0110-150500.20.43.1	SUSE-SU-2026:1607-1	none	not affected	vulnerable code not in execute path	sles
rancher/shell:v0.7.0	false	Harvester master	vim	vim@9.2.0110-150500.20.43.1	SUSE-SU-2026:2236-1	none	not affected	vulnerable code not in execute path	sles
rancher/shell:v0.7.0	false	Harvester master	vim-data-common	vim-data-common@9.2.0110-150500.20.43.1	SUSE-SU-2026:1607-1	none	not affected	vulnerable code not in execute path	sles
rancher/shell:v0.7.0	false	Harvester master	vim-data-common	vim-data-common@9.2.0110-150500.20.43.1	SUSE-SU-2026:2236-1	none	not affected	vulnerable code not in execute path	sles
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/docker/cli@v29.1.2+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	google.golang.org/grpc@v1.74.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-32280	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-61726	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/descheduler/descheduler:v0.33.0	false	Harvester master	bin/descheduler	stdlib@v1.24.2	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	go.opentelemetry.io/otel/sdk@v1.40.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-39825	none	not affected	vulnerable code not in execute path	gobinary
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	curl	curl@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0215-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0018-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0373-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.49.1-150000.3.27.1	SUSE-SU-2025:02672-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.62.0-150700.9.3.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0215-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libbrotlicommon1	libbrotlicommon1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.49.1-150000.3.27.1	SUSE-SU-2025:02672-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.62.0-150700.9.3.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0215-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.62.0-150700.9.3.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	boost-license1_66_0	boost-license1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	none	not affected	component not present	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0215-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libboost_thread1_66_0	libboost_thread1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0018-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0373-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:0309-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2025:03546-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.10.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.62.0-150700.9.3.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0215-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libbrotlicommon1	libbrotlicommon1@1.0.7-3.3.1	SUSE-SU-2025:03268-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.49.1-150000.3.27.1	SUSE-SU-2025:02672-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.62.0-150700.9.3.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	boost-license1_66_0	boost-license1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	none	not affected	component not present	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0215-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0018-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libglib-2_0-0	libglib-2_0-0@2.78.6-150600.4.16.1	SUSE-SU-2026:0373-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	libudev1	libudev1@254.25-150600.4.40.1	SUSE-SU-2026:1040-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.62.0-150700.9.3.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0215-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.9.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libboost_thread1_66_0	libboost_thread1_66_0@1.66.0-12.3.1	SUSE-SU-2025:02536-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2025:03198-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libcurl4	libcurl4@8.6.0-150600.4.21.1	SUSE-SU-2026:0903-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.62.0-150700.9.3.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	vim-data-common	vim-data-common@9.2.0398-150500.20.49.1	SUSE-SU-2026:2236-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	vim-small	vim-small@9.2.0398-150500.20.49.1	SUSE-SU-2026:2236-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-operator:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	none	not affected	vulnerable code not in execute path	sles