SUSE Rancher - Harvester master version - CVE Scans - 2026-06-26

How to use this page

You can click a column header to sort by column.
Use the search bar below to filter the results by image (and version/tag), if the image is mirrored or made by SUSE (true/false),
release, affected binary, vulnerable dependency (and its version), vulnerability ID (CVE, GHSA, SUSE-SU etc.), severity,
status (if affected or not affected/false-positive), justification (for false-positives),
vulnerability type (related to the programming language or container OS).
The search functionality might execute a bit slow depending on the number of vulnerabilities displayed in the page.
False-positive CVEs that are removed with VEX have the status as "not affected" with the severity set to "none",
because they do not affect the binary/package/image. The justification explains why they are false-positives,
according to the VEX statuses as explained in KB 000021573.
For further instructions about scanned versions, scanning frequency, tooling and false-positives, please consult the main instructions.
The severity (CVSS rating) of some CVEs in the portal might differ from the original severity reported by some vendors and security scanners.
This happens, because SUSE recalculates the CVSS rating of CVEs based on criteria, like: applicability and difficulty of the issue being
exploited in the wild; how it can actually affect the confidentiality, integrity and availability of SUSE's products etc. CVEs that had their CVSS
severity rating changed, either decreased or increased, will have the distinctive tag '*' close to its severity.

Search:

Image	Mirrored	Release	Binary/Package	Dependency	Vulnerability ID (CVE)	Severity	Status	Justification (for status not affected)	Type (language or OS)
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-31789	CRITICAL	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28387	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28388	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28389	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28390	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-45447	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-31789	CRITICAL	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28387	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28388	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28389	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28390	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-45447	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	musl	musl@1.2.5-r21	CVE-2026-40200	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	musl-utils	musl-utils@1.2.5-r21	CVE-2026-40200	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	zlib	zlib@1.3.1-r2	CVE-2026-22184	HIGH	affected		alpine
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
kubeovn/kube-ovn:v1.16.2	false	Harvester master	libssl3t64	libssl3t64@3.0.13-0ubuntu3.9	CVE-2026-45447	HIGH	affected		ubuntu
kubeovn/kube-ovn:v1.16.2	false	Harvester master	libssl3t64-fips	libssl3t64-fips@3.0.13-0ubuntu3.9	CVE-2026-45447	HIGH	affected		ubuntu
kubeovn/kube-ovn:v1.16.2	false	Harvester master	openssl	openssl@3.0.13-0ubuntu3.9	CVE-2026-45447	HIGH	affected		ubuntu
longhornio/backing-image-manager:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	glibc-devel	glibc-devel@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	libopenssl1_1	libopenssl1_1@1.1.1w-150700.11.19.1	SUSE-SU-2026:2392-1	HIGH	affected		sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	qemu-img	qemu-img@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	qemu-tools	qemu-tools@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	usr/local/bin/backing-image-manager	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/backing-image-manager:v1.12.0	false	Harvester master	usr/local/bin/backing-image-manager	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/net@v0.54.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/csi-provisioner:v5.3.0-20260514	false	Harvester master	csi-provisioner	golang.org/x/net@v0.48.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/csi-provisioner:v5.3.0-20260514	false	Harvester master	csi-provisioner	golang.org/x/net@v0.48.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/net@v0.48.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/net@v0.48.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-cli:v1.12.0	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-cli:v1.12.0	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
longhornio/longhorn-cli:v1.12.0	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	libopenssl1_1	libopenssl1_1@1.1.1w-150700.11.19.1	SUSE-SU-2026:2392-1	HIGH	affected		sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	qemu-img	qemu-img@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	qemu-pr-helper	qemu-pr-helper@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	qemu-tools	qemu-tools@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.51.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.51.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	libarchive13	libarchive13@3.7.2-150600.3.17.1	SUSE-SU-2026:2490-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	libopenssl1_1	libopenssl1_1@1.1.1w-150700.11.19.1	SUSE-SU-2026:2392-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	qemu-img	qemu-img@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	qemu-pr-helper	qemu-pr-helper@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	qemu-tools	qemu-tools@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	Python	cryptography@48.0.0	GHSA-537c-gmf6-5ccf	HIGH	affected		python-pkg
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-manager:v1.12.0	false	Harvester master	libopenssl1_1	libopenssl1_1@1.1.1w-150700.11.19.1	SUSE-SU-2026:2392-1	HIGH	affected		sles
longhornio/longhorn-manager:v1.12.0	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-manager:v1.12.0	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
longhornio/longhorn-manager:v1.12.0	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	glibc-devel	glibc-devel@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	longhorn-share-manager	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	longhorn-share-manager	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/longhorn-ui:v1.12.0	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/longhorn-ui:v1.12.0	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-ui:v1.12.0	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
longhornio/longhorn-ui:v1.12.0	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/longhorn-ui:v1.12.0	false	Harvester master	nginx	nginx@1.21.5-150600.10.18.1	SUSE-SU-2026:2307-1	HIGH	affected		sles
longhornio/longhorn-ui:v1.12.0	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/net@v0.33.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/net@v0.33.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	stdlib@v1.25.3	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/apache/thrift@v0.21.0	CVE-2026-41602	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/go-git/go-billy/v5@v5.6.2	CVE-2026-44973	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/go-git/go-billy/v5@v5.6.2	CVE-2026-44740	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/go-git/go-git/v5@v5.14.0	CVE-2026-45022	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/go-jose/go-jose/v3@v3.0.4	CVE-2026-34986	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/go-jose/go-jose/v4@v4.1.0	CVE-2026-34986	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/grafana/grafana@12.1.1	CVE-2025-41115	CRITICAL	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/grafana/grafana@12.1.1	CVE-2026-27877	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/grafana/tempo@v1.5.1-0.20250529124718-87c2dc380cec	CVE-2026-21728	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/grafana/tempo@v1.5.1-0.20250529124718-87c2dc380cec	CVE-2026-28377	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/jackc/pgx/v5@v5.7.5	CVE-2026-33816	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/openfga/openfga@v1.8.13	CVE-2025-64751	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/prometheus/prometheus@v0.303.1	CVE-2026-42151	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/prometheus/prometheus@v0.303.1	CVE-2026-42154	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2025-47913	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/crypto@v0.39.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/net@v0.41.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/net@v0.41.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	golang.org/x/net@v0.41.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	google.golang.org/grpc@v1.73.0	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	stdlib@v1.25.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	github.com/grafana/grafana@12.1.1	CVE-2025-41115	CRITICAL	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	github.com/grafana/grafana@12.1.1	CVE-2026-27877	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-cli	stdlib@v1.25.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	github.com/grafana/grafana@12.1.1	CVE-2025-41115	CRITICAL	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	github.com/grafana/grafana@12.1.1	CVE-2026-27877	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana-server	stdlib@v1.25.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.32.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libopenssl3	libopenssl3@3.1.4-150600.5.33.1	SUSE-SU-2026:0312-1	CRITICAL	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libopenssl3	libopenssl3@3.1.4-150600.5.33.1	SUSE-SU-2025:03442-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libopenssl3	libopenssl3@3.1.4-150600.5.33.1	SUSE-SU-2026:1215-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libopenssl3	libopenssl3@3.1.4-150600.5.33.1	SUSE-SU-2026:2393-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libpython3_11-1_0	libpython3_11-1_0@3.11.13-150600.3.30.1	SUSE-SU-2025:02717-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libpython3_11-1_0	libpython3_11-1_0@3.11.13-150600.3.30.1	SUSE-SU-2026:0767-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libpython3_11-1_0	libpython3_11-1_0@3.11.13-150600.3.30.1	SUSE-SU-2026:1349-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libsqlite3-0	libsqlite3-0@3.50.2-150000.3.33.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311	python311@3.11.13-150600.3.30.1	SUSE-SU-2025:02717-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311	python311@3.11.13-150600.3.30.1	SUSE-SU-2026:0767-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311	python311@3.11.13-150600.3.30.1	SUSE-SU-2026:1349-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311-base	python311-base@3.11.13-150600.3.30.1	SUSE-SU-2025:02717-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311-base	python311-base@3.11.13-150600.3.30.1	SUSE-SU-2026:0767-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	python311-base	python311-base@3.11.13-150600.3.30.1	SUSE-SU-2026:1349-1	HIGH	affected		sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	pyasn1@0.6.1	CVE-2026-23490	HIGH	affected		python-pkg
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	pyasn1@0.6.1	CVE-2026-30922	HIGH	affected		python-pkg
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	urllib3@2.5.0	CVE-2025-66418	HIGH	affected		python-pkg
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	urllib3@2.5.0	CVE-2025-66471	HIGH	affected		python-pkg
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	urllib3@2.5.0	CVE-2026-21441	HIGH	affected		python-pkg
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	Python	urllib3@2.5.0	CVE-2026-44431	HIGH	affected		python-pkg
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2025-47913	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/crypto@v0.40.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/net@v0.41.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/net@v0.41.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	golang.org/x/net@v0.41.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	google.golang.org/grpc@v1.68.1	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	stdlib@v1.25.4	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:0371-1	HIGH	affected		sles
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	glibc	glibc@2.38-150600.14.37.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	github.com/opencontainers/selinux@v1.11.1	CVE-2025-52881	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/net@v0.37.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/net@v0.37.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/net@v0.37.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2025-61729	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-32280	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-33811	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-33814	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-39820	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-39836	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2026-42499	HIGH	affected		gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	stdlib@v1.25.3	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	go.opentelemetry.io/otel@v1.40.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	go.opentelemetry.io/otel/sdk@v1.40.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	busybox	busybox@1.37.0-150700.18.15.1	SUSE-SU-2026:2054-1	HIGH	affected		sles
rancher/fleet-agent:v0.15.2	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/crypto@v0.50.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/crypto@v0.50.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/crypto@v0.50.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/crypto@v0.50.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/crypto@v0.50.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/crypto@v0.50.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/fleet:v0.15.2	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
rancher/fleet:v0.15.2	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
rancher/fleet:v0.15.2	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
rancher/fleet:v0.15.2	false	Harvester master	openssh-common	openssh-common@9.6p1-150600.6.37.1	SUSE-SU-2026:2371-1	HIGH	affected		sles
rancher/fleet:v0.15.2	false	Harvester master	openssh-fips	openssh-fips@9.6p1-150600.6.37.1	SUSE-SU-2026:2371-1	HIGH	affected		sles
rancher/fleet:v0.15.2	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/crypto@v0.50.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/crypto@v0.50.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/crypto@v0.50.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/crypto@v0.50.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/crypto@v0.50.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/crypto@v0.50.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/crypto@v0.50.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/crypto@v0.50.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/crypto@v0.50.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/crypto@v0.50.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/crypto@v0.50.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/crypto@v0.50.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	Harvester master	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	Harvester master	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	Harvester master	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	Harvester master	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.45.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.45.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.45.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.45.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.45.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.45.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.45.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.45.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.45.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.45.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.45.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.45.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.45.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.45.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.45.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.45.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	golang.org/x/net@v0.43.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	golang.org/x/net@v0.43.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	golang.org/x/net@v0.43.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	golang.org/x/net@v0.43.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	golang.org/x/net@v0.43.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	golang.org/x/net@v0.43.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	Harvester master	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-cluster-repo:master-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-cluster-repo:master-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/harvester-cluster-repo:master-head	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-cluster-repo:master-head	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	github.com/golang/glog@v0.0.0-20160126235308-23def4e6c14b	CVE-2024-45339	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	go.opentelemetry.io/otel/sdk@v1.34.0	CVE-2026-24051	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	go.opentelemetry.io/otel/sdk@v1.34.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2025-47913	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/crypto@v0.36.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/net@v0.38.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	manager	google.golang.org/grpc@v1.72.1	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-networkfs-manager:main-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-networkfs-manager:main-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/harvester-networkfs-manager:main-head	false	Harvester master	usr/bin/networkfs-manager	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-networkfs-manager:main-head	false	Harvester master	usr/bin/networkfs-manager	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-node-disk-manager:master-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/harvester-node-disk-manager:master-head	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-node-disk-manager:master-head	false	Harvester master	usr/bin/node-disk-manager	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-node-disk-manager:master-head	false	Harvester master	usr/bin/node-disk-manager	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-node-manager:master-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-node-manager:master-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/harvester-node-manager:master-head	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-node-manager:master-head	false	Harvester master	usr/bin/harvester-node-manager	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-node-manager:master-head	false	Harvester master	usr/bin/harvester-node-manager	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/net@v0.23.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/net@v0.23.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	google.golang.org/grpc@v1.56.3	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	kubevirt.io/kubevirt@v1.5.0	CVE-2025-64324	HIGH	affected		gobinary
rancher/harvester-seeder:main-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-seeder:main-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/harvester-seeder:main-head	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-seeder:main-head	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-upgrade:master-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/harvester-upgrade:master-head	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-upgrade:master-head	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2025-61729	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-32280	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-39820	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2026-42499	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/virtctl	stdlib@v1.24.9	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-22874	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-61729	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-32280	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-39836	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.50.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/containerd/containerd@v1.7.12	CVE-2026-53488	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2025-47913	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/net@v0.20.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/net@v0.20.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/net@v0.20.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/net@v0.33.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/crypto@v0.50.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/net@v0.53.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/upgrade-helper	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/crypto@v0.50.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/crypto@v0.50.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-webhook:master-head	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/containerd/containerd@v1.7.32	CVE-2026-53488	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/go-jose/go-jose/v3@v3.0.4	CVE-2026-34986	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/crypto@v0.50.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/net@v0.53.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester:master-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/harvester:master-head	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester:master-head	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/containerd/containerd@v1.7.32	CVE-2026-53488	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/go-jose/go-jose/v3@v3.0.4	CVE-2026-34986	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/crypto@v0.50.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/net@v0.53.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	golang.org/x/net@v0.52.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-33811	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-33814	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-39820	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-39836	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	Harvester master	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-42499	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-39820	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-42499	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	busybox	busybox@1.37.0-150700.18.12.1	SUSE-SU-2026:0759-1	HIGH	affected		sles
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	busybox	busybox@1.37.0-150700.18.12.1	SUSE-SU-2026:2054-1	HIGH	affected		sles
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2025-61729	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-32280	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-33814	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-39836	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-39820	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-42499	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-32280	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-33814	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-39820	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-39836	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-42499	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-39820	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-39836	HIGH	affected		gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-42499	HIGH	affected		gobinary
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libcap2	libcap2@1:2.66-4	CVE-2026-4878	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2026-33845	CRITICAL	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2026-42010	CRITICAL	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2025-32988	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2025-32990	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2026-33846	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2026-3833	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libgnutls30	libgnutls30@3.7.9-2+deb12u3	CVE-2026-42009	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libldap-2.5-0	libldap-2.5-0@2.5.13+dfsg-5	CVE-2023-2953	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	liblzma5	liblzma5@5.4.1-0.2	CVE-2025-31115	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2024-10979	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2025-1094	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2025-8714	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2025-8715	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-2004	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-2005	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-2006	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-6473	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-6477	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libpq5	libpq5@15.8-0+deb12u1	CVE-2026-6478	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-31789	CRITICAL	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2025-15467	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2025-69421	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-28387	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-28388	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-28389	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-28390	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	libssl3	libssl3@3.0.14-1~deb12u2	CVE-2026-45447	HIGH	affected		debian
rancher/mirrored-fluent-fluent-bit:3.1.8	true	Harvester master	zlib1g	zlib1g@1:1.2.13.dfsg-1	CVE-2023-45853	CRITICAL	affected		debian
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	golang.org/x/net@v0.49.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-33811	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-39820	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-ingress-nginx-kube-webhook-certgen:v1.6.7	true	Harvester master	kube-webhook-certgen	stdlib@v1.25.6	CVE-2026-42499	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	google.golang.org/protobuf@v1.28.1	CVE-2024-24786	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-33811	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-39820	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2026-42499	HIGH	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-config-reloader:v0.0.6	true	Harvester master	config-reloader	stdlib@v1.23.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2025-15467	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2025-69421	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libcrypto3	libcrypto3@3.3.3-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2025-15467	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2025-69421	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	libssl3	libssl3@3.3.3-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	musl	musl@1.2.5-r1	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	musl-utils	musl-utils@1.2.5-r0	CVE-2025-26519	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	musl-utils	musl-utils@1.2.5-r0	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	ruby	ruby@3.3.6-r0	CVE-2025-27219	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	ruby	ruby@3.3.6-r0	CVE-2025-61594	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	ruby-libs	ruby-libs@3.3.6-r0	CVE-2025-27219	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	ruby-libs	ruby-libs@3.3.6-r0	CVE-2025-61594	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	zlib	zlib@1.3.1-r1	CVE-2026-22184	HIGH	affected		alpine
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	activesupport@7.1.1	CVE-2026-33176	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	addressable@2.8.5	CVE-2026-35611	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	addressable@2.8.6	CVE-2026-35611	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	concurrent-ruby@1.1.10	CVE-2026-54904	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	concurrent-ruby@1.2.3	CVE-2026-54904	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	concurrent-ruby@1.3.5	CVE-2026-54904	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	erb@4.0.2	CVE-2026-41316	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	faraday@1.10.3	CVE-2026-54297	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	faraday@2.7.12	CVE-2026-54297	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	google-protobuf@3.21.12	CVE-2024-7254	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	jwt@2.10.1	CVE-2026-45363	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.3.4.1	CVE-2026-42257	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.3.4.1	CVE-2026-42258	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.3.4.1	CVE-2026-42245	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.3.4.1	CVE-2026-42246	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.4.19	CVE-2026-42257	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.4.19	CVE-2026-42258	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.4.19	CVE-2026-42245	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	net-imap@0.4.19	CVE-2026-42246	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	nokogiri@1.18.4	GHSA-353f-x4gh-cqq8	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	nokogiri@1.18.4	GHSA-c4rq-3m3g-8wgx	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.1	CVE-2026-54502	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.1	CVE-2026-54592	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.1	CVE-2026-54896	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.1	CVE-2026-54897	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.1	CVE-2026-54898	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.1	CVE-2026-54899	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.1	CVE-2026-54900	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.1	CVE-2026-54901	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.1	CVE-2026-54902	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.1	CVE-2026-54903	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.10	CVE-2026-54502	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.10	CVE-2026-54592	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.10	CVE-2026-54896	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.10	CVE-2026-54897	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.10	CVE-2026-54898	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.10	CVE-2026-54899	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.10	CVE-2026-54900	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.10	CVE-2026-54901	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.10	CVE-2026-54902	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	oj@3.16.10	CVE-2026-54903	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2025-46727	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2025-61770	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2025-61771	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2025-61772	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2025-61919	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2026-22860	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2026-34785	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2026-34827	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rack@3.0.14	CVE-2026-34829	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rexml@3.2.6	CVE-2024-49761	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	rexml@3.3.2	CVE-2024-49761	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	uri@0.12.2	CVE-2025-61594	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	webrick@1.8.1	CVE-2024-47220	HIGH	affected		gemspec
rancher/mirrored-kube-logging-fluentd:v1.16-4.10-full	true	Harvester master	Ruby	zlib@3.0.0	CVE-2026-27820	CRITICAL	affected		gemspec
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	golang.org/x/net@v0.29.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	golang.org/x/net@v0.29.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libcrypto3	libcrypto3@3.5.5-r0	CVE-2026-45447	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	libssl3	libssl3@3.5.5-r0	CVE-2026-45447	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	musl	musl@1.2.5-r21	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	musl-utils	musl-utils@1.2.5-r21	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	zlib	zlib@1.3.1-r2	CVE-2026-22184	HIGH	affected		alpine
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	google.golang.org/grpc@v1.77.0	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2025-15467	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2025-69421	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libcrypto3	libcrypto3@3.5.1-r0	CVE-2026-45447	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libexpat	libexpat@2.7.1-r0	CVE-2025-59375	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libexpat	libexpat@2.7.1-r0	CVE-2026-25210	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libexpat	libexpat@2.7.1-r0	CVE-2026-45186	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2025-64720	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2025-65018	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2025-66293	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2026-22695	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2026-22801	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libpng	libpng@1.6.47-r0	CVE-2026-25646	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-31789	CRITICAL	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2025-15467	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2025-69421	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-28387	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-28388	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-28389	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-28390	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libssl3	libssl3@3.5.1-r0	CVE-2026-45447	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libxml2	libxml2@2.13.8-r0	CVE-2025-49794	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libxml2	libxml2@2.13.8-r0	CVE-2025-49795	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libxml2	libxml2@2.13.8-r0	CVE-2025-49796	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	libxml2	libxml2@2.13.8-r0	CVE-2026-6732	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	musl	musl@1.2.5-r10	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	musl-utils	musl-utils@1.2.5-r10	CVE-2026-40200	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	nghttp2-libs	nghttp2-libs@1.65.0-r0	CVE-2026-27135	HIGH	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	pcre2	pcre2@10.43-r1	CVE-2025-58050	CRITICAL	affected		alpine
rancher/mirrored-library-nginx:1.29.1-alpine	true	Harvester master	zlib	zlib@1.3.1-r2	CVE-2026-22184	HIGH	affected		alpine
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/net@v0.24.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/net@v0.24.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	google.golang.org/grpc@v1.60.1	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-33811	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-39820	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-42499	HIGH	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	github.com/prometheus/prometheus@v0.305.0	CVE-2026-42151	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	github.com/prometheus/prometheus@v0.305.0	CVE-2026-42154	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	golang.org/x/net@v0.43.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	golang.org/x/net@v0.43.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	github.com/prometheus/prometheus@v0.301.0	CVE-2026-42151	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	github.com/prometheus/prometheus@v0.301.0	CVE-2026-42154	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/net@v0.34.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/net@v0.34.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	github.com/prometheus/prometheus@v0.305.0	CVE-2026-42151	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	github.com/prometheus/prometheus@v0.305.0	CVE-2026-42154	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	golang.org/x/net@v0.43.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	golang.org/x/net@v0.43.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-61729	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	glibc	glibc@2.40-160000.3.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	glibc-devel	glibc-devel@2.40-160000.3.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	glibc-locale-base	glibc-locale-base@2.40-160000.3.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libcap-progs	libcap-progs@2.73-160000.2.2	SUSE-SU-2026:21373-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libsqlite3-0	libsqlite3-0@3.50.4-160000.1.2	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libzypp	libzypp@17.38.2-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	xz	xz@5.8.1-160000.2.2	SUSE-SU-2026:21848-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/net@v0.41.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/net@v0.41.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	google.golang.org/grpc@v1.73.0	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2025-61729	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-32280	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-33811	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-33814	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-39820	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-39836	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2026-42499	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	stdlib@v1.24.5	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	github.com/docker/docker@v28.2.2+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/net@v0.41.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/net@v0.41.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	google.golang.org/grpc@v1.73.0	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2025-61729	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-32280	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-33811	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-33814	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-39820	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-39836	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2026-42499	HIGH	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	stdlib@v1.24.5	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/containerd/containerd@v1.7.30	CVE-2026-53488	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/go-jose/go-jose/v3@v3.0.4	CVE-2026-34986	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/microsoft/kiota-http-go@v1.4.4	CVE-2026-44503	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/russellhaering/goxmldsig@v1.4.0	CVE-2026-33487	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	go.opentelemetry.io/otel/sdk@v1.42.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/net@v0.54.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	kubevirt.io/kubevirt@v1.6.0	CVE-2025-64324	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-32280	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/net@v0.51.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/bandwidth	stdlib@v1.25.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/bandwidth	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/bandwidth	stdlib@v1.25.9	CVE-2026-39820	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/bandwidth	stdlib@v1.25.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/bandwidth	stdlib@v1.25.9	CVE-2026-42499	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/cni	stdlib@v1.25.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/cni	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/cni	stdlib@v1.25.9	CVE-2026-39820	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/cni	stdlib@v1.25.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/cni	stdlib@v1.25.9	CVE-2026-42499	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	google.golang.org/grpc@v1.72.2	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-32280	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/firewall	stdlib@v1.25.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/firewall	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/firewall	stdlib@v1.25.9	CVE-2026-39820	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/firewall	stdlib@v1.25.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/firewall	stdlib@v1.25.9	CVE-2026-42499	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	github.com/docker/docker@v25.0.15-0.20260325154711-d2dbc0547253+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	google.golang.org/grpc@v1.72.2	CVE-2026-33186	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/containerd/containerd@v1.7.30	CVE-2026-53488	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/go-jose/go-jose/v3@v3.0.4	CVE-2026-34986	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/microsoft/kiota-http-go@v1.4.4	CVE-2026-44503	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/russellhaering/goxmldsig@v1.4.0	CVE-2026-33487	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	go.opentelemetry.io/otel/sdk@v1.42.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	github.com/docker/docker@v25.0.8+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	github.com/docker/docker@v25.0.8+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	github.com/docker/docker@v25.0.8+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	github.com/docker/docker@v25.0.8+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/crypto@v0.44.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/crypto@v0.44.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/crypto@v0.44.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/crypto@v0.44.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-32280	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-33811	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-39820	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-39836	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	stdlib@v1.25.8	CVE-2026-42499	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/crypto@v0.46.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/net@v0.48.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/net@v0.48.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	golang.org/x/net@v0.48.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/net@v0.51.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/net@v0.51.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	golang.org/x/net@v0.51.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	busybox	busybox@1.37.0-150700.18.15.1	SUSE-SU-2026:2054-1	HIGH	affected		sles
rancher/shell:v0.7.0	false	Harvester master	glibc	glibc@2.38-150600.14.43.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
rancher/shell:v0.7.0	false	Harvester master	glibc	glibc@2.38-150600.14.43.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/shell:v0.7.0	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
rancher/shell:v0.7.0	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	github.com/containerd/containerd@v1.7.30	CVE-2026-53488	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/net@v0.48.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/net@v0.48.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-32280	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-33814	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-39836	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/containerd/containerd@v1.7.29	CVE-2026-46680	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/containerd/containerd@v1.7.29	CVE-2026-53488	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/docker/docker@v28.5.2+incompatible	CVE-2026-34040	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/docker/docker@v28.5.2+incompatible	CVE-2026-41567	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/docker/docker@v28.5.2+incompatible	CVE-2026-42306	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/docker/docker@v28.5.2+incompatible	CVE-2026-33997	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/go-git/go-billy/v5@v5.7.0	CVE-2026-44973	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/go-git/go-billy/v5@v5.7.0	CVE-2026-44740	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/go-git/go-git/v5@v5.16.3	CVE-2026-45022	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/go-jose/go-jose/v4@v4.0.5	CVE-2026-34986	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/hashicorp/go-getter@v1.8.3	CVE-2026-4660	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	go.opentelemetry.io/otel@v1.37.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/crypto@v0.46.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/crypto@v0.46.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/crypto@v0.46.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/crypto@v0.46.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/crypto@v0.46.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/crypto@v0.46.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/net@v0.48.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/net@v0.48.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2025-61729	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-32280	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-33814	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-39820	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-39836	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-42499	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-39820	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-39836	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-42499	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2025-61729	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-32280	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-33811	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-33814	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-39820	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-39836	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2026-42499	HIGH	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kustomize	stdlib@v1.22.7	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/support-bundle-kit:master-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
rancher/support-bundle-kit:master-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
rancher/support-bundle-kit:master-head	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
rancher/support-bundle-kit:master-head	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	github.com/containerd/containerd@v1.7.30	CVE-2026-46680	HIGH	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	github.com/containerd/containerd@v1.7.30	CVE-2026-53488	HIGH	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/net@v0.48.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/net@v0.48.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-39836	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
rancher/system-agent:v0.3.16-suc	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/net@v0.48.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/net@v0.48.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-33811	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-39820	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-39836	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-68121	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-61729	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-32280	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-39820	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-42499	HIGH	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-47912	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-58188	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-61727	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	golang.org/x/net@v0.47.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	golang.org/x/net@v0.47.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-32280	HIGH	affected		gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-33814	HIGH	affected		gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-39836	HIGH	affected		gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/net@v0.53.0	CVE-2026-39821	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-39828	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-39829	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-39835	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-42508	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-46595	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-46597	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-39832	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/crypto@v0.49.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/net@v0.52.0	CVE-2026-25680	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	stdlib@v1.26.0	CVE-2026-32280	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	stdlib@v1.26.0	CVE-2026-33811	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	stdlib@v1.26.0	CVE-2026-33814	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	stdlib@v1.26.0	CVE-2026-39820	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	stdlib@v1.26.0	CVE-2026-39836	HIGH	affected		gobinary
registry.k8s.io/descheduler/descheduler:v0.36.0	false	Harvester master	bin/descheduler	stdlib@v1.26.0	CVE-2026-42499	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	go.opentelemetry.io/otel@v1.40.0	CVE-2026-29181	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-32280	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-33811	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-33814	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-39820	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-39836	HIGH	affected		gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	stdlib@v1.25.7	CVE-2026-42499	HIGH	affected		gobinary
registry.suse.com/bci/bci-base:16.0	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
registry.suse.com/bci/bci-base:16.0	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	HIGH	affected		sles
registry.suse.com/bci/bci-base:16.0	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
registry.suse.com/bci/bci-base:16.0	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	libcurl4	libcurl4@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.50.2-150000.3.33.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	libudev1	libudev1@254.27-150600.4.46.2	SUSE-SU-2026:1040-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	curl	curl@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	libcurl4	libcurl4@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.50.2-150000.3.33.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	libudev1	libudev1@254.27-150600.4.46.2	SUSE-SU-2026:1040-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	curl	curl@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.50.2-150000.3.33.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	curl	curl@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	libcurl4	libcurl4@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.50.2-150000.3.33.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	libudev1	libudev1@254.27-150600.4.46.2	SUSE-SU-2026:1040-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	qemu-img	qemu-img@9.2.4-150700.3.11.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	curl	curl@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	libcurl4	libcurl4@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.50.2-150000.3.33.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	libudev1	libudev1@254.27-150600.4.46.2	SUSE-SU-2026:1040-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	curl	curl@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.50.2-150000.3.33.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	curl	curl@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:1369-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	glibc	glibc@2.38-150600.14.40.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.12.1	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	qemu-img	qemu-img@9.2.4-150700.3.11.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.17.1	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	libopenssl1_1	libopenssl1_1@1.1.1w-150700.11.19.1	SUSE-SU-2026:2392-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	libsoup-3_0-0	libsoup-3_0-0@3.4.4-150600.3.42.1	SUSE-SU-2026:2314-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu	qemu@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-accel-tcg-x86	qemu-accel-tcg-x86@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-hw-display-virtio-gpu	qemu-hw-display-virtio-gpu@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-hw-display-virtio-gpu-pci	qemu-hw-display-virtio-gpu-pci@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-hw-display-virtio-vga	qemu-hw-display-virtio-vga@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-img	qemu-img@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-ipxe	qemu-ipxe@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-pr-helper	qemu-pr-helper@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-seabios	qemu-seabios@9.2.41.16.3_3_g3d33c746-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-tools	qemu-tools@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-vgabios	qemu-vgabios@9.2.41.16.3_3_g3d33c746-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-vmsr-helper	qemu-vmsr-helper@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	qemu-x86	qemu-x86@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	wicked	wicked@0.6.78-150700.1.4	SUSE-SU-2026:2349-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	wicked-service	wicked-service@0.6.78-150700.1.4	SUSE-SU-2026:2349-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	xen-libs	xen-libs@4.20.3_04-150700.3.36.1	SUSE-SU-2026:2364-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	xz	xz@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/libguestfs-tools:1.7.0-150700.3.21.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-api:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-api:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-api:1.7.0-150700.3.21.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-api:1.7.0-150700.3.21.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-api:1.7.0-150700.3.21.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-controller:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-controller:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-controller:1.7.0-150700.3.21.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-controller:1.7.0-150700.3.21.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-controller:1.7.0-150700.3.21.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-controller:1.7.0-150700.3.21.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.17.1	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	qemu-img	qemu-img@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-handler:1.7.0-150700.3.21.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	gnutls	gnutls@3.8.3-150600.4.17.1	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.17.1	SUSE-SU-2026:2115-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu	qemu@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-accel-tcg-x86	qemu-accel-tcg-x86@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-hw-display-virtio-gpu	qemu-hw-display-virtio-gpu@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-hw-display-virtio-gpu-pci	qemu-hw-display-virtio-gpu-pci@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-hw-display-virtio-vga	qemu-hw-display-virtio-vga@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-hw-usb-host	qemu-hw-usb-host@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-hw-usb-redirect	qemu-hw-usb-redirect@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-img	qemu-img@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-x86	qemu-x86@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	xz	xz@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-operator:1.7.0-150700.3.21.1	false	Harvester master	glibc	glibc@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-operator:1.7.0-150700.3.21.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-operator:1.7.0-150700.3.21.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-operator:1.7.0-150700.3.21.1	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
registry.suse.com/suse/sles/15.7/virt-operator:1.7.0-150700.3.21.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	HIGH	affected		sles
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	ip-control-loop	stdlib@v1.25.6	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	node-slice-controller	stdlib@v1.25.6	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
ghcr.io/k8snetworkplumbingwg/whereabouts:v0.9.3	false	Harvester master	whereabouts	stdlib@v1.25.6	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
kubeovn/kube-ovn:v1.16.2	false	Harvester master	kube-ovn/kube-ovn-daemon	github.com/containerd/containerd/v2@v2.2.4	CVE-2026-53488	none	not affected	vulnerable code not present	gobinary
kubeovn/kube-ovn:v1.16.2	false	Harvester master	kube-ovn/kube-ovn-daemon	github.com/containerd/containerd/v2@v2.2.4	CVE-2026-53489	none	not affected	vulnerable code not present	gobinary
kubeovn/kube-ovn:v1.16.2	false	Harvester master	kube-ovn/kube-ovn-daemon	github.com/containerd/containerd/v2@v2.2.4	CVE-2026-53492	none	not affected	vulnerable code not present	gobinary
longhornio/backing-image-manager:v1.12.0	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	none	not affected	vulnerable code not in execute path	sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	qemu-pr-helper	qemu-pr-helper@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	none	not affected	vulnerable code not in execute path	sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	qemu-vmsr-helper	qemu-vmsr-helper@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	none	not affected	vulnerable code not in execute path	sles
longhornio/backing-image-manager:v1.12.0	false	Harvester master	usr/local/bin/backing-image-manager	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/backing-image-manager:v1.12.0	false	Harvester master	usr/local/bin/backing-image-manager	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/backing-image-manager:v1.12.0	false	Harvester master	usr/local/bin/backing-image-manager	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/backing-image-manager:v1.12.0	false	Harvester master	usr/local/bin/backing-image-manager	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/backing-image-manager:v1.12.0	false	Harvester master	usr/local/bin/backing-image-manager	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/backing-image-manager:v1.12.0	false	Harvester master	usr/local/bin/backing-image-manager	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/crypto@v0.51.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/crypto@v0.51.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/crypto@v0.51.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/crypto@v0.51.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/crypto@v0.51.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/crypto@v0.51.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/crypto@v0.51.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/crypto@v0.51.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/net@v0.54.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/net@v0.54.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/net@v0.54.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/net@v0.54.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	golang.org/x/net@v0.54.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/csi-attacher:v4.12.0	false	Harvester master	csi-attacher	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-node-driver-registrar:v2.17.0	false	Harvester master	csi-node-driver-registrar	golang.org/x/net@v0.54.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/csi-node-driver-registrar:v2.17.0	false	Harvester master	csi-node-driver-registrar	golang.org/x/net@v0.54.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/csi-node-driver-registrar:v2.17.0	false	Harvester master	csi-node-driver-registrar	golang.org/x/net@v0.54.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/csi-node-driver-registrar:v2.17.0	false	Harvester master	csi-node-driver-registrar	golang.org/x/net@v0.54.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-node-driver-registrar:v2.17.0	false	Harvester master	csi-node-driver-registrar	golang.org/x/net@v0.54.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/csi-node-driver-registrar:v2.17.0	false	Harvester master	csi-node-driver-registrar	golang.org/x/net@v0.54.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/csi-node-driver-registrar:v2.17.0	false	Harvester master	csi-node-driver-registrar	stdlib@v1.26.3	CVE-2026-27145	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-node-driver-registrar:v2.17.0	false	Harvester master	csi-node-driver-registrar	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-provisioner:v5.3.0-20260514	false	Harvester master	csi-provisioner	golang.org/x/net@v0.48.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-provisioner:v5.3.0-20260514	false	Harvester master	csi-provisioner	golang.org/x/net@v0.48.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-provisioner:v5.3.0-20260514	false	Harvester master	csi-provisioner	golang.org/x/net@v0.48.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-provisioner:v5.3.0-20260514	false	Harvester master	csi-provisioner	golang.org/x/net@v0.48.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-provisioner:v5.3.0-20260514	false	Harvester master	csi-provisioner	golang.org/x/net@v0.48.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/crypto@v0.46.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/crypto@v0.46.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/crypto@v0.46.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/crypto@v0.46.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/crypto@v0.46.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/crypto@v0.46.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/crypto@v0.46.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/crypto@v0.46.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/net@v0.48.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/net@v0.48.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/net@v0.48.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/net@v0.48.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/csi-resizer:v2.1.0-20260514	false	Harvester master	csi-resizer	golang.org/x/net@v0.48.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/csi-snapshotter:v8.5.0-20260514	false	Harvester master	csi-snapshotter	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/livenessprobe:v2.19.0	false	Harvester master	livenessprobe	golang.org/x/net@v0.54.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/livenessprobe:v2.19.0	false	Harvester master	livenessprobe	golang.org/x/net@v0.54.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/livenessprobe:v2.19.0	false	Harvester master	livenessprobe	golang.org/x/net@v0.54.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/livenessprobe:v2.19.0	false	Harvester master	livenessprobe	golang.org/x/net@v0.54.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
longhornio/livenessprobe:v2.19.0	false	Harvester master	livenessprobe	golang.org/x/net@v0.54.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/livenessprobe:v2.19.0	false	Harvester master	livenessprobe	golang.org/x/net@v0.54.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/livenessprobe:v2.19.0	false	Harvester master	livenessprobe	stdlib@v1.26.3	CVE-2026-27145	none	not affected	vulnerable code not in execute path	gobinary
longhornio/livenessprobe:v2.19.0	false	Harvester master	livenessprobe	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	none	not affected	vulnerable code not in execute path	sles
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-cli:v1.12.0	false	Harvester master	usr/local/bin/longhornctl-local	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	none	not affected	vulnerable code not in execute path	sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	qemu-vmsr-helper	qemu-vmsr-helper@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	none	not affected	vulnerable code not in execute path	sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	none	not affected	vulnerable code not in execute path	sles
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/grpc_health_probe	stdlib@v1.26.3	CVE-2026-27145	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/grpc_health_probe	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.51.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.51.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.51.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.51.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.51.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-engine:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	glibc-devel	glibc-devel@2.38-150600.14.46.1	SUSE-SU-2026:2231-1	none	not affected	vulnerable code not in execute path	sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	qemu-vmsr-helper	qemu-vmsr-helper@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	none	not affected	vulnerable code not in execute path	sles
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/go-spdk-helper	stdlib@v1.26.3	CVE-2026-27145	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/go-spdk-helper	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/grpc_health_probe	stdlib@v1.26.3	CVE-2026-27145	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/grpc_health_probe	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-instance-manager:v1.12.0	false	Harvester master	usr/local/bin/longhorn-instance-manager	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	libzypp	libzypp@17.37.18-150700.6.3.1	SUSE-SU-2026:2531-1	none	not affected	vulnerable code not in execute path	sles
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/crypto@v0.50.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/crypto@v0.50.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/crypto@v0.50.0	CVE-2026-39829	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/crypto@v0.50.0	CVE-2026-39830	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/crypto@v0.50.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/crypto@v0.50.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/crypto@v0.50.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/crypto@v0.50.0	CVE-2026-46597	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/net@v0.53.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/net@v0.53.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/net@v0.53.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/net@v0.53.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	golang.org/x/net@v0.53.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-manager:v1.12.0	false	Harvester master	usr/local/sbin/longhorn-manager	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	none	not affected	vulnerable code not in execute path	sles
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	longhorn-share-manager	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	longhorn-share-manager	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	longhorn-share-manager	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	longhorn-share-manager	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
longhornio/longhorn-share-manager:v1.12.0	false	Harvester master	longhorn-share-manager	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-150000.3.39.1	SUSE-SU-2026:2528-1	none	not affected	vulnerable code not in execute path	sles
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/support-bundle-kit	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.52.0	CVE-2026-39821	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
longhornio/support-bundle-kit:v0.0.86	false	Harvester master	usr/bin/yq	stdlib@v1.26.2	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	none	not affected	vulnerable code not in execute path	sles
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2025-22869	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/crypto@v0.31.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/net@v0.33.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/net@v0.33.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/net@v0.33.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/net@v0.33.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/net@v0.33.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/appco-alertmanager:0.28.1-12.7	false	Harvester master	usr/bin/alertmanager	golang.org/x/oauth2@v0.24.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	github.com/buger/jsonparser@v1.1.1	CVE-2026-32285	none	not affected	vulnerable code not in execute path	gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/appco-grafana:12.1.1-2.2	false	Harvester master	usr/share/grafana/bin/grafana	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libexpat1	libexpat1@2.7.1-150400.3.28.1	SUSE-SU-2025:03624-1	none	not affected	vulnerable code not in execute path	sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	libexpat1	libexpat1@2.7.1-150400.3.28.1	SUSE-SU-2026:1166-1	none	not affected	vulnerable code not in execute path	sles
rancher/appco-k8s-sidecar:1.30.7-11.3	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	none	not affected	vulnerable code not in execute path	sles
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/appco-kube-state-metrics:2.17.0-10.7	false	Harvester master	usr/bin/kube-state-metrics	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/appco-node-exporter:1.9.1-11.3	false	Harvester master	usr/bin/node_exporter	golang.org/x/crypto@v0.36.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/cluster-api-controller:v1.12.7	false	Harvester master	manager	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/crypto@v0.50.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/crypto@v0.50.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/crypto@v0.50.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/net@v0.53.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/net@v0.53.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/net@v0.53.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/net@v0.53.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet-agent:v0.15.2	false	Harvester master	usr/bin/fleetagent	golang.org/x/net@v0.53.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	none	not affected	vulnerable code not in execute path	sles
rancher/fleet:v0.15.2	false	Harvester master	openssh-clients	openssh-clients@9.6p1-150600.6.37.1	SUSE-SU-2026:2371-1	none	not affected	vulnerable code not in execute path	sles
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/crypto@v0.50.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/crypto@v0.50.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/crypto@v0.50.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/net@v0.53.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/net@v0.53.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/net@v0.53.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/net@v0.53.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleet	golang.org/x/net@v0.53.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/crypto@v0.50.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/crypto@v0.50.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/crypto@v0.50.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/net@v0.53.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/net@v0.53.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/net@v0.53.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/net@v0.53.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/fleet:v0.15.2	false	Harvester master	usr/bin/fleetcontroller	golang.org/x/net@v0.53.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	Harvester master	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	Harvester master	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	Harvester master	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	Harvester master	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	Harvester master	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	Harvester master	pod_nanny	golang.org/x/oauth2@v0.24.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-33814	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-39821	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	Harvester master	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	Harvester master	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	Harvester master	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	Harvester master	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	Harvester master	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	Harvester master	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	Harvester master	cluster-proportional-autoscaler	golang.org/x/oauth2@v0.23.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260608	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260608	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260608	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260608	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-33814	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260608	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-39821	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260608	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cni-plugins:v1.9.1-build20260608	false	Harvester master	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	Harvester master	node-cache	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	go.opentelemetry.io/otel@v1.40.0	CVE-2026-29181	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	go.opentelemetry.io/otel/sdk@v1.40.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	Harvester master	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	Harvester master	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	Harvester master	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.45.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.45.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.45.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.45.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.45.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-apiserver	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.45.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.45.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.45.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.45.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.45.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-controller-manager	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.45.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.45.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.45.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.45.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.45.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-proxy	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.45.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.45.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.45.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.45.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.45.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kube-scheduler	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.35.6-rke2r1-build20260612	false	Harvester master	usr/local/bin/kubelet	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	cert-approver	stdlib@v1.24.13	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	install_multus	stdlib@v1.24.13	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	google.golang.org/grpc@v1.73.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	kubeconfig_generator	stdlib@v1.24.13	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	thin_entrypoint	stdlib@v1.24.13	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	google.golang.org/grpc@v1.73.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/hardened-multus-cni:v4.2.4-build20260310	false	Harvester master	usr/src/multus-cni/bin/multus	stdlib@v1.24.13	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	Harvester master	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	Harvester master	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	Harvester master	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	Harvester master	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	Harvester master	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	github.com/golang-jwt/jwt/v4@v4.2.0	CVE-2025-30204	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/crypto@v0.36.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/crypto@v0.36.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/crypto@v0.36.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/crypto@v0.36.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/crypto@v0.36.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/crypto@v0.36.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/crypto@v0.36.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/crypto@v0.36.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/crypto@v0.36.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/harvester-eventrouter:master-head	false	Harvester master	usr/bin/eventrouter	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/harvester-kubeovn-operator:v1.16.2-dev.0	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-load-balancer-webhook:master-head	false	Harvester master	usr/bin/harvester-load-balancer-webhook	github.com/rancher/rancher@v0.0.0-20250827213702-1daa918b630b	CVE-2019-12274	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-load-balancer-webhook:master-head	false	Harvester master	usr/bin/harvester-load-balancer-webhook	github.com/rancher/rancher@v0.0.0-20250827213702-1daa918b630b	CVE-2021-36775	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-load-balancer-webhook:master-head	false	Harvester master	usr/bin/harvester-load-balancer-webhook	github.com/rancher/rancher@v0.0.0-20250827213702-1daa918b630b	CVE-2025-67601	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-networkfs-manager:main-head	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-networkfs-manager:main-head	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-networkfs-manager:main-head	false	Harvester master	usr/bin/networkfs-manager	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/harvester-networkfs-manager:main-head	false	Harvester master	usr/bin/networkfs-manager	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/harvester-networkfs-manager:main-head	false	Harvester master	usr/bin/networkfs-manager	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/harvester-networkfs-manager:main-head	false	Harvester master	usr/bin/networkfs-manager	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/harvester-networkfs-manager:main-head	false	Harvester master	usr/bin/networkfs-manager	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	zypper	zypper@1.14.95-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	github.com/harvester/harvester@v1.5.1	CVE-2025-71261	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager-webhook:master-head	false	Harvester master	usr/bin/node-disk-manager-webhook	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager:master-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-node-disk-manager:master-head	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-node-disk-manager:master-head	false	Harvester master	usr/bin/node-disk-manager	github.com/harvester/harvester@v1.5.1	CVE-2025-71261	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-node-disk-manager:master-head	false	Harvester master	usr/bin/node-disk-manager	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager:master-head	false	Harvester master	usr/bin/node-disk-manager	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager:master-head	false	Harvester master	usr/bin/node-disk-manager	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager:master-head	false	Harvester master	usr/bin/node-disk-manager	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-disk-manager:master-head	false	Harvester master	usr/bin/node-disk-manager	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/crypto@v0.36.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/crypto@v0.36.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/crypto@v0.36.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/crypto@v0.36.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/crypto@v0.36.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/crypto@v0.36.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/crypto@v0.36.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/crypto@v0.36.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/crypto@v0.36.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager-webhook:master-head	false	Harvester master	usr/bin/harvester-node-manager-webhook	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager:master-head	false	Harvester master	libzypp	libzypp@17.38.5-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-node-manager:master-head	false	Harvester master	usr/bin/harvester-node-manager	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager:master-head	false	Harvester master	usr/bin/harvester-node-manager	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager:master-head	false	Harvester master	usr/bin/harvester-node-manager	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager:master-head	false	Harvester master	usr/bin/harvester-node-manager	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/harvester-node-manager:master-head	false	Harvester master	usr/bin/harvester-node-manager	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	github.com/harvester/harvester@v0.0.2-0.20250725061328-e679a719d15d	CVE-2025-71261	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/crypto@v0.45.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/crypto@v0.45.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/crypto@v0.45.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/crypto@v0.45.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/crypto@v0.45.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/crypto@v0.45.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/crypto@v0.45.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/crypto@v0.45.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/net@v0.23.0	CVE-2024-45338	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/net@v0.23.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/net@v0.23.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/net@v0.23.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/net@v0.23.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-pcidevices:master-head	false	Harvester master	usr/bin/pcidevices	golang.org/x/net@v0.23.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/crypto@v0.44.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/crypto@v0.44.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/crypto@v0.44.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/crypto@v0.44.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/crypto@v0.44.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/crypto@v0.44.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/crypto@v0.44.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/crypto@v0.44.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/harvester-seeder:main-head	false	Harvester master	usr/bin/manager	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	github.com/docker/cli@v27.1.1+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/crypto@v0.36.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/crypto@v0.36.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/crypto@v0.36.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/crypto@v0.36.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/crypto@v0.36.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/crypto@v0.36.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/crypto@v0.36.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/crypto@v0.36.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/crypto@v0.36.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	google.golang.org/grpc@v1.68.1	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/wharfie	stdlib@v1.24.2	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.50.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.50.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.50.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.50.0	CVE-2026-39821	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.50.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	golang.org/x/net@v0.50.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-25679	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-27137	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-32280	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-32281	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-32283	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-33810	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/bin/yq	stdlib@v1.26.0	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/containerd/containerd@v1.7.12	CVE-2024-25621	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/distribution/distribution@v2.8.1+incompatible	CVE-2026-35172	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/cli@v23.0.4+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/docker@v23.0.8+incompatible	CVE-2024-41110	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/docker@v23.0.8+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/docker@v23.0.8+incompatible	CVE-2026-41567	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/docker/docker@v23.0.8+incompatible	CVE-2026-42306	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/go-git/go-billy/v5@v5.5.0	CVE-2026-44973	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/go-git/go-git/v5@v5.11.0	CVE-2025-21613	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/go-git/go-git/v5@v5.11.0	CVE-2025-21614	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/go-git/go-git/v5@v5.11.0	CVE-2026-45022	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/moby/moby@v25.0.1+incompatible	CVE-2024-36623	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/moby/moby@v25.0.1+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/moby/moby@v25.0.1+incompatible	CVE-2026-41567	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	github.com/moby/moby@v25.0.1+incompatible	CVE-2026-42306	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2024-45337	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/elemental	golang.org/x/crypto@v0.18.0	CVE-2025-22869	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	github.com/docker/cli@v27.1.1+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2025-22869	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2026-39830	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/crypto@v0.31.0	CVE-2026-46597	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/net@v0.33.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/net@v0.33.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/net@v0.33.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/net@v0.33.0	CVE-2026-33814	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/net@v0.33.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/harvester-upgrade:master-head	false	Harvester master	usr/local/bin/harvester-installer	golang.org/x/net@v0.33.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/crypto@v0.50.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/crypto@v0.50.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/crypto@v0.50.0	CVE-2026-39829	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/crypto@v0.50.0	CVE-2026-39830	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/crypto@v0.50.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/crypto@v0.50.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/crypto@v0.50.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/net@v0.53.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/net@v0.53.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/net@v0.53.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/net@v0.53.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-vm-import-controller:main-head	false	Harvester master	usr/bin/vm-import-controller	golang.org/x/net@v0.53.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.36-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-webhook:master-head	false	Harvester master	libsqlite3-0	libsqlite3-0@3.51.3-160000.1.1	SUSE-SU-2026:22166-1	none	not affected	vulnerable code not in execute path	sles
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/docker/cli@v25.0.3+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-41567	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-42306	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2019-12274	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2021-36775	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2025-67601	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/harvester-webhook:master-head	false	Harvester master	usr/bin/harvester-webhook	google.golang.org/grpc@v1.75.1	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/docker/cli@v25.0.3+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-41567	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/docker/docker@v25.0.6+incompatible	CVE-2026-42306	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2019-12274	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2021-36775	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	github.com/rancher/rancher@v0.0.0-20250828140533-07a90f09a491	CVE-2025-67601	none	not affected	vulnerable code not in execute path	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/harvester:master-head	false	Harvester master	usr/bin/harvester	google.golang.org/grpc@v1.75.1	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	Harvester master	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-32280	none	not affected	vulnerable code not in execute path	gobinary
rancher/kubectl:v1.35.1	false	Harvester master	bin/kubectl	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	bin/kuberlr	stdlib@v1.24.4	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.33.9	stdlib@v1.24.13	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.34.5	stdlib@v1.24.13	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-32280	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/kuberlr-kubectl:v7.0.3	false	Harvester master	usr/bin/kubectl1.35.2	stdlib@v1.25.7	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	golang.org/x/net@v0.29.0	CVE-2024-45338	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	golang.org/x/net@v0.29.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	golang.org/x/net@v0.29.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	golang.org/x/net@v0.29.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	golang.org/x/net@v0.29.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	golang.org/x/net@v0.29.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	golang.org/x/oauth2@v0.21.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-logging-logging-operator:4.10.0	true	Harvester master	manager	stdlib@v1.23.1	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/crypto@v0.45.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/crypto@v0.45.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/crypto@v0.45.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/crypto@v0.45.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/crypto@v0.45.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/crypto@v0.45.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/crypto@v0.45.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/crypto@v0.45.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-kube-vip-kube-vip-iptables:v1.0.4	true	Harvester master	kube-vip	stdlib@v1.25.6	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	go.opentelemetry.io/otel/sdk@v1.21.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	go.opentelemetry.io/otel/sdk@v1.21.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2024-45337	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2025-22869	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/crypto@v0.22.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/net@v0.24.0	CVE-2024-45338	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/net@v0.24.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/net@v0.24.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/net@v0.24.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/net@v0.24.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/net@v0.24.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	golang.org/x/oauth2@v0.18.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2024-34156	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-adapter-prometheus-adapter:v0.12.0	true	Harvester master	adapter	stdlib@v1.22.2	CVE-2026-32280	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2025-61726	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-admission-webhook:v0.85.0	true	Harvester master	bin/admission-webhook	stdlib@v1.24.6	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2025-22869	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/crypto@v0.32.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/net@v0.34.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/net@v0.34.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/net@v0.34.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/net@v0.34.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/net@v0.34.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	golang.org/x/oauth2@v0.25.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-config-reloader:v0.80.1	true	Harvester master	bin/prometheus-config-reloader	stdlib@v1.23.6	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2025-61726	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/mirrored-prometheus-operator-prometheus-operator:v0.85.0	true	Harvester master	bin/operator	stdlib@v1.24.6	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libcap2	libcap2@2.73-160000.2.2	SUSE-SU-2026:21373-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	liblzma5	liblzma5@5.8.1-160000.2.2	SUSE-SU-2026:21848-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libopenssl-3-devel	libopenssl-3-devel@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libopenssl3	libopenssl3@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libpython3_13-1_0	libpython3_13-1_0@3.13.12-160000.1.1	SUSE-SU-2026:21178-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libsystemd0	libsystemd0@257.10-160000.1.1	SUSE-SU-2026:21144-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	libudev1	libudev1@257.10-160000.1.1	SUSE-SU-2026:21144-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	openssl-3	openssl-3@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	python313-base	python313-base@3.13.12-160000.1.1	SUSE-SU-2026:21178-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	tar	tar@1.35-160000.2.2	SUSE-SU-2026:21143-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	zypper	zypper@1.14.94-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	dbg	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	Harvester master	wait-shutdown	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/crypto@v0.39.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/crypto@v0.39.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/crypto@v0.39.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/crypto@v0.39.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/crypto@v0.39.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/crypto@v0.39.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/crypto@v0.39.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/crypto@v0.39.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/crypto@v0.39.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/net@v0.41.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/net@v0.41.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/net@v0.41.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/net@v0.41.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/prometheus	golang.org/x/net@v0.41.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/crypto@v0.39.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/crypto@v0.39.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/crypto@v0.39.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/crypto@v0.39.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/crypto@v0.39.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/crypto@v0.39.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/crypto@v0.39.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/crypto@v0.39.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/crypto@v0.39.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/net@v0.41.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/net@v0.41.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/net@v0.41.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/net@v0.41.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/prom-prometheus:v3.5.0	false	Harvester master	bin/promtool	golang.org/x/net@v0.41.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/crypto@v0.50.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/net@v0.53.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/net@v0.53.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/net@v0.53.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/net@v0.53.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/agent	golang.org/x/net@v0.53.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-agent:v2.14.2	false	Harvester master	usr/bin/kubectl	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/crypto@v0.51.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/crypto@v0.51.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/crypto@v0.51.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/crypto@v0.51.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/crypto@v0.51.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/crypto@v0.51.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/crypto@v0.51.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/crypto@v0.51.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/net@v0.54.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/net@v0.54.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/net@v0.54.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/net@v0.54.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/rancher-webhook:v0.10.6	false	Harvester master	usr/bin/webhook	golang.org/x/net@v0.54.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	github.com/harvester/harvester@v0.0.0-20251016061812-c537e12b7f09	CVE-2025-71261	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/crypto@v0.40.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/crypto@v0.40.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/crypto@v0.40.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/crypto@v0.40.0	CVE-2026-39829	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/crypto@v0.40.0	CVE-2026-39830	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/crypto@v0.40.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/crypto@v0.40.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/crypto@v0.40.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/crypto@v0.40.0	CVE-2026-46597	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-harvester	stdlib@v1.25.5	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/crypto@v0.48.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/crypto@v0.48.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/crypto@v0.48.0	CVE-2026-39829	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/crypto@v0.48.0	CVE-2026-39830	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/crypto@v0.48.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/crypto@v0.48.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/crypto@v0.48.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/crypto@v0.48.0	CVE-2026-46597	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/net@v0.51.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/net@v0.51.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/net@v0.51.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/net@v0.51.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/net@v0.51.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	golang.org/x/net@v0.51.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-32281	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-33810	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	opt/drivers/management-state/bin/docker-machine-driver-linode	stdlib@v1.26.1	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	github.com/jackc/pgx/v5@v5.8.0	CVE-2026-33816	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/crypto@v0.45.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/crypto@v0.45.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/crypto@v0.45.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/crypto@v0.45.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/crypto@v0.45.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/crypto@v0.45.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/crypto@v0.45.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/crypto@v0.45.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.3-k3s1	CVE-2026-46680	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.3-k3s1	CVE-2026-53488	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.3-k3s1	CVE-2026-53489	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.3-k3s1	CVE-2026-53492	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	golang.org/x/net@v0.47.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/containerd-shim-runc-v2	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	golang.org/x/net@v0.45.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	golang.org/x/net@v0.45.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	golang.org/x/net@v0.45.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	golang.org/x/net@v0.45.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	golang.org/x/net@v0.45.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	golang.org/x/net@v0.45.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	golang.org/x/net@v0.45.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	google.golang.org/grpc@v1.71.1	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2025-61726	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/etcdctl	stdlib@v1.24.11	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	github.com/jackc/pgx/v5@v5.8.0	CVE-2026-33816	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/crypto@v0.45.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/crypto@v0.45.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/crypto@v0.45.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/crypto@v0.45.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/crypto@v0.45.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/crypto@v0.45.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/crypto@v0.45.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/crypto@v0.45.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/k3s	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	github.com/docker/docker@v25.0.13+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/crypto@v0.50.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/net@v0.53.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/net@v0.53.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/net@v0.53.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/net@v0.53.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher	golang.org/x/net@v0.53.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	github.com/golang-jwt/jwt/v4@v4.5.0	CVE-2025-30204	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	go.opentelemetry.io/otel@v1.36.0	CVE-2026-29181	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/crypto@v0.44.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/crypto@v0.44.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/crypto@v0.44.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/crypto@v0.44.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/crypto@v0.44.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/rancher-machine	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	golang.org/x/net@v0.43.0	CVE-2026-33814	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	golang.org/x/net@v0.43.0	CVE-2026-39821	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-27145	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-33814	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/bin/runc	stdlib@v1.25.9	CVE-2026-42504	none	not affected	vulnerable code not present	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rancher:v2.14.2	false	Harvester master	usr/share/rancher/ui/assets/wins.exe	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.35.4-0.20260415195656-e51c0636351d-build20260415	false	Harvester master	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd	github.com/containerd/containerd/v2@v2.2.5-k3s2	CVE-2026-53488	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd	github.com/containerd/containerd/v2@v2.2.5-k3s2	CVE-2026-53489	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd	github.com/containerd/containerd/v2@v2.2.5-k3s2	CVE-2026-53492	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd	github.com/docker/cli@v29.1.5+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd	github.com/docker/docker@v27.3.1+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd	github.com/docker/docker@v27.3.1+incompatible	CVE-2026-41567	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd	github.com/docker/docker@v27.3.1+incompatible	CVE-2026-42306	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd	go.opentelemetry.io/otel/sdk@v1.38.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd	go.opentelemetry.io/otel/sdk@v1.38.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.5-k3s2	CVE-2026-53488	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.5-k3s2	CVE-2026-53489	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.5-k3s2	CVE-2026-53492	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/containerd-shim-runc-v2	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	github.com/buger/jsonparser@v1.1.1	CVE-2026-32285	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	github.com/docker/docker@v27.1.1+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	github.com/docker/docker@v27.1.1+incompatible	CVE-2026-41567	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	github.com/docker/docker@v27.1.1+incompatible	CVE-2026-42306	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	golang.org/x/net@v0.47.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	google.golang.org/grpc@v1.75.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	stdlib@v1.26.3	CVE-2026-27145	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/crictl	stdlib@v1.26.3	CVE-2026-42504	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/ctr	github.com/containerd/containerd/v2@v2.2.5-k3s2	CVE-2026-53488	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/ctr	github.com/containerd/containerd/v2@v2.2.5-k3s2	CVE-2026-53489	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/ctr	github.com/containerd/containerd/v2@v2.2.5-k3s2	CVE-2026-53492	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/ctr	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	go.opentelemetry.io/otel/sdk@v1.36.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/crypto@v0.45.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/kubelet	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-33814	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-39821	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/runc	stdlib@v1.25.10	CVE-2026-27145	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.35.6-rke2r1	false	Harvester master	bin/runc	stdlib@v1.25.10	CVE-2026-42504	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	vim	vim@9.2.0110-150500.20.43.1	SUSE-SU-2026:1607-1	none	not affected	vulnerable code not in execute path	sles
rancher/shell:v0.7.0	false	Harvester master	vim	vim@9.2.0110-150500.20.43.1	SUSE-SU-2026:2236-1	none	not affected	vulnerable code not in execute path	sles
rancher/shell:v0.7.0	false	Harvester master	vim-data-common	vim-data-common@9.2.0110-150500.20.43.1	SUSE-SU-2026:1607-1	none	not affected	vulnerable code not in execute path	sles
rancher/shell:v0.7.0	false	Harvester master	vim-data-common	vim-data-common@9.2.0110-150500.20.43.1	SUSE-SU-2026:2236-1	none	not affected	vulnerable code not in execute path	sles
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/crypto@v0.46.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/crypto@v0.46.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/crypto@v0.46.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/crypto@v0.46.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/crypto@v0.46.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/crypto@v0.46.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/crypto@v0.46.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/crypto@v0.46.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/net@v0.48.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/net@v0.48.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/net@v0.48.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/net@v0.48.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	golang.org/x/net@v0.48.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/helm	stdlib@v1.25.8	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	github.com/docker/cli@v29.1.2+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	go.opentelemetry.io/otel/sdk@v1.37.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/crypto@v0.46.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/crypto@v0.46.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/crypto@v0.46.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/net@v0.48.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/net@v0.48.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/net@v0.48.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/net@v0.48.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	golang.org/x/net@v0.48.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	google.golang.org/grpc@v1.74.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/k9s	stdlib@v1.25.1	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-32280	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/shell:v0.7.0	false	Harvester master	usr/local/bin/kubectl	stdlib@v1.25.7	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/crypto@v0.46.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/crypto@v0.46.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/crypto@v0.46.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/crypto@v0.46.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/crypto@v0.46.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/crypto@v0.46.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/crypto@v0.46.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/crypto@v0.46.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/net@v0.48.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/net@v0.48.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/net@v0.48.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/net@v0.48.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	golang.org/x/net@v0.48.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	google.golang.org/grpc@v1.72.2	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/system-agent-installer-rancher:v2.14.2	false	Harvester master	helm	stdlib@v1.25.6	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/crypto@v0.46.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/crypto@v0.46.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/crypto@v0.46.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/crypto@v0.46.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/crypto@v0.46.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/crypto@v0.46.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/crypto@v0.46.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/crypto@v0.46.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/net@v0.48.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/net@v0.48.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/net@v0.48.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/net@v0.48.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	golang.org/x/net@v0.48.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-39823	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	opt/rancher-system-agent-suc/rancher-system-agent	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2025-61726	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-agent:v0.3.16-suc	false	Harvester master	usr/bin/kubectl	stdlib@v1.24.6	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	golang.org/x/net@v0.47.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	golang.org/x/net@v0.47.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	golang.org/x/net@v0.47.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	golang.org/x/net@v0.47.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	golang.org/x/net@v0.47.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/system-upgrade-controller:v0.19.1	false	Harvester master	bin/system-upgrade-controller	stdlib@v1.25.8	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/crypto@v0.50.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/crypto@v0.50.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/crypto@v0.50.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/crypto@v0.50.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/crypto@v0.50.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/crypto@v0.50.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/crypto@v0.50.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/crypto@v0.50.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/net@v0.53.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/net@v0.53.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/net@v0.53.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/net@v0.53.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/turtles:v0.26.2	false	Harvester master	manager	golang.org/x/net@v0.53.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	go.opentelemetry.io/otel/sdk@v1.40.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
registry.k8s.io/sig-storage/snapshot-controller:v8.5.0	false	Harvester master	snapshot-controller	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	curl	curl@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.12.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	libopenssl3	libopenssl3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-apiserver:1.64.0-150700.9.6.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.12.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-cloner:1.64.0-150700.9.6.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.12.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	libcurl4	libcurl4@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	libudev1	libudev1@254.27-150600.4.46.2	SUSE-SU-2026:1040-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	openssl-3	openssl-3@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-controller:1.64.0-150700.9.6.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.12.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	libgnutls30	libgnutls30@3.8.3-150600.4.12.1	SUSE-SU-2026:2115-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	shadow	shadow@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-importer:1.64.0-150700.9.6.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.12.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.2.3-150700.5.24.1	SUSE-SU-2026:1375-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-operator:1.64.0-150700.9.6.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.12.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	libcurl4	libcurl4@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	libudev1	libudev1@254.27-150600.4.46.2	SUSE-SU-2026:1040-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadproxy:1.64.0-150700.9.6.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	gpg2	gpg2@2.4.4-150600.3.12.1	SUSE-SU-2026:0434-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	libcap2	libcap2@2.63-150400.3.3.1	SUSE-SU-2026:1432-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	libcurl4	libcurl4@8.14.1-150700.7.11.1	SUSE-SU-2026:0903-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	libnghttp2-14	libnghttp2-14@1.64.0-150700.1.5	SUSE-SU-2026:1074-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	libsqlite3-0	libsqlite3-0@3.50.2-150000.3.33.1	SUSE-SU-2026:2528-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	libudev1	libudev1@254.27-150600.4.46.2	SUSE-SU-2026:1040-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	login_defs	login_defs@4.8.1-150600.17.9.1	SUSE-RU-2026:1228-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/cdi-uploadserver:1.64.0-150700.9.6.1	false	Harvester master	tar	tar@1.34-150000.3.34.1	SUSE-SU-2026:1177-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-api:1.7.0-150700.3.21.1	false	Harvester master	libsolv-tools-base	libsolv-tools-base@0.7.35-150700.11.5.2	SUSE-SU-2026:2531-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-ipxe	qemu-ipxe@9.2.4-150700.3.17.1	SUSE-SU-2026:2385-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-seabios	qemu-seabios@9.2.41.16.3_3_g3d33c746-150700.3.17.1	SUSE-SU-2026:2385-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	qemu-vgabios	qemu-vgabios@9.2.41.16.3_3_g3d33c746-150700.3.17.1	SUSE-SU-2026:2385-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	vim-data-common	vim-data-common@9.2.0398-150500.20.49.1	SUSE-SU-2026:2236-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	vim-small	vim-small@9.2.0398-150500.20.49.1	SUSE-SU-2026:2236-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	xen-libs	xen-libs@4.20.3_04-150700.3.36.1	SUSE-SU-2026:2364-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-launcher:1.7.0-150700.3.21.1	false	Harvester master	zypper	zypper@1.14.94-150700.13.3.1	SUSE-SU-2026:2531-1	none	not affected	vulnerable code not in execute path	sles
registry.suse.com/suse/sles/15.7/virt-operator:1.7.0-150700.3.21.1	false	Harvester master	liblzma5	liblzma5@5.4.1-150600.3.3.1	SUSE-SU-2026:2051-1	none	not affected	vulnerable code not in execute path	sles