SUSE Rancher - RKE2 v1.33.13 version - CVE Scans - 2026-06-26

How to use this page

You can click a column header to sort by column.
Use the search bar below to filter the results by image (and version/tag), if the image is mirrored or made by SUSE (true/false),
release, affected binary, vulnerable dependency (and its version), vulnerability ID (CVE, GHSA, SUSE-SU etc.), severity,
status (if affected or not affected/false-positive), justification (for false-positives),
vulnerability type (related to the programming language or container OS).
The search functionality might execute a bit slow depending on the number of vulnerabilities displayed in the page.
False-positive CVEs that are removed with VEX have the status as "not affected" with the severity set to "none",
because they do not affect the binary/package/image. The justification explains why they are false-positives,
according to the VEX statuses as explained in KB 000021573.
For further instructions about scanned versions, scanning frequency, tooling and false-positives, please consult the main instructions.
The severity (CVSS rating) of some CVEs in the portal might differ from the original severity reported by some vendors and security scanners.
This happens, because SUSE recalculates the CVSS rating of CVEs based on criteria, like: applicability and difficulty of the issue being
exploited in the wild; how it can actually affect the confidentiality, integrity and availability of SUSE's products etc. CVEs that had their CVSS
severity rating changed, either decreased or increased, will have the distinctive tag '*' close to its severity.

Search:

Image	Mirrored	Release	Binary/Package	Dependency	Vulnerability ID (CVE)	Severity	Status	Justification (for status not affected)	Type (language or OS)
rancher/hardened-addon-resizer:1.8.23-build20260604	false	RKE2 v1.33.13	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	RKE2 v1.33.13	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	RKE2 v1.33.13	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	RKE2 v1.33.13	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	RKE2 v1.33.13	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	RKE2 v1.33.13	kube-webhook-certgen	golang.org/x/net@v0.52.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	RKE2 v1.33.13	kube-webhook-certgen	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	RKE2 v1.33.13	kube-webhook-certgen	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	RKE2 v1.33.13	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-33811	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	RKE2 v1.33.13	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-33814	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	RKE2 v1.33.13	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-39820	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	RKE2 v1.33.13	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-39836	HIGH	affected		gobinary
rancher/kube-webhook-certgen:v1.14.5-hardened2	false	RKE2 v1.33.13	kube-webhook-certgen	stdlib@v1.26.2	CVE-2026-42499	HIGH	affected		gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	glibc	glibc@2.40-160000.3.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	glibc-devel	glibc-devel@2.40-160000.3.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	glibc-locale-base	glibc-locale-base@2.40-160000.3.1	SUSE-SU-2026:21807-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libcap-progs	libcap-progs@2.73-160000.2.2	SUSE-SU-2026:21373-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libsolv-tools-base	libsolv-tools-base@0.7.35-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libsqlite3-0	libsqlite3-0@3.50.4-160000.1.2	SUSE-SU-2026:22166-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libzypp	libzypp@17.38.2-160000.1.1	SUSE-SU-2026:22172-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	xz	xz@5.8.1-160000.2.2	SUSE-SU-2026:21848-1	HIGH	affected		sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	go.opentelemetry.io/otel@v1.40.0	CVE-2026-29181	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	go.opentelemetry.io/otel/sdk@v1.40.0	CVE-2026-39883	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39828	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39832	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39835	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-42508	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-46595	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39833	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/crypto@v0.49.0	CVE-2026-46598	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/net@v0.51.0	CVE-2026-25680	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/net@v0.51.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	golang.org/x/net@v0.51.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39829	HIGH	affected		gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-46597	HIGH	affected		gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39831	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39834	HIGH*Severity modified based on SUSE's CVE database and CVSS rating	affected		gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-33814	HIGH	affected		gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-39821	HIGH	affected		gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	RKE2 v1.33.13	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	RKE2 v1.33.13	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	RKE2 v1.33.13	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	RKE2 v1.33.13	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	RKE2 v1.33.13	pod_nanny	golang.org/x/net@v0.33.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-addon-resizer:1.8.23-build20260604	false	RKE2 v1.33.13	pod_nanny	golang.org/x/oauth2@v0.24.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	calicoctl	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/calico-ipam	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-33814	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-39821	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/dhcp	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	opt/cni/bin/install	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/calico-node	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-calico:v3.32.0-build20260604	false	RKE2 v1.33.13	usr/bin/kube-controllers	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	RKE2 v1.33.13	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	RKE2 v1.33.13	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	RKE2 v1.33.13	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	RKE2 v1.33.13	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	RKE2 v1.33.13	cluster-proportional-autoscaler	golang.org/x/net@v0.36.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-cluster-autoscaler:v1.10.3-build20260604	false	RKE2 v1.33.13	cluster-proportional-autoscaler	golang.org/x/oauth2@v0.23.0	CVE-2025-22868	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-dns-node-cache:1.26.8-build20260608	false	RKE2 v1.33.13	node-cache	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	go.opentelemetry.io/otel@v1.40.0	CVE-2026-29181	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	go.opentelemetry.io/otel/sdk@v1.40.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcd	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-etcd:v3.6.12-k3s1-build20260603	false	RKE2 v1.33.13	usr/local/bin/etcdctl	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-flannel:v0.28.5-build20260604	false	RKE2 v1.33.13	opt/bin/flanneld	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/crypto@v0.49.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-k8s-metrics-server:v0.8.1-build20260604	false	RKE2 v1.33.13	metrics-server	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	github.com/opencontainers/selinux@v1.11.1	CVE-2025-52881	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/crypto@v0.36.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-apiserver	google.golang.org/grpc@v1.68.1	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	github.com/opencontainers/selinux@v1.11.1	CVE-2025-52881	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/crypto@v0.36.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-controller-manager	google.golang.org/grpc@v1.68.1	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/crypto@v0.36.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-proxy	google.golang.org/grpc@v1.68.1	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/crypto@v0.36.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kube-scheduler	google.golang.org/grpc@v1.68.1	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	github.com/opencontainers/selinux@v1.11.1	CVE-2025-52881	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful@v0.42.0	CVE-2023-45142	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/hardened-kubernetes:v1.33.13-rke2r1-build20260612	false	RKE2 v1.33.13	usr/local/bin/kubelet	google.golang.org/grpc@v1.68.1	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	RKE2 v1.33.13	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	RKE2 v1.33.13	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	RKE2 v1.33.13	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	RKE2 v1.33.13	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/hardened-snapshot-controller:v8.6.0-build20260608	false	RKE2 v1.33.13	snapshot-controller	golang.org/x/net@v0.54.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-mapkubeapis/bin/mapkubeapis	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	home/klipper-helm/.local/share/helm/plugins/helm-set-status/helm-set-status	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39827	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39828	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39829	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39830	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-39835	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-46595	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/crypto@v0.47.0	CVE-2026-46597	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/klipper-helm:v0.11.1-build20260615	false	RKE2 v1.33.13	usr/bin/helm	golang.org/x/net@v0.49.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libcap2	libcap2@2.73-160000.2.2	SUSE-SU-2026:21373-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	liblzma5	liblzma5@5.8.1-160000.2.2	SUSE-SU-2026:21848-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libopenssl-3-devel	libopenssl-3-devel@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libopenssl-3-fips-provider	libopenssl-3-fips-provider@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libopenssl3	libopenssl3@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libpython3_13-1_0	libpython3_13-1_0@3.13.12-160000.1.1	SUSE-SU-2026:21178-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libsystemd0	libsystemd0@257.10-160000.1.1	SUSE-SU-2026:21144-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	libudev1	libudev1@257.10-160000.1.1	SUSE-SU-2026:21144-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	openssl-3	openssl-3@3.5.0-160000.6.1	SUSE-SU-2026:21186-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	python313-base	python313-base@3.13.12-160000.1.1	SUSE-SU-2026:21178-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	tar	tar@1.35-160000.2.2	SUSE-SU-2026:21143-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	zypper	zypper@1.14.94-160000.1.1	SUSE-SU-2026:22172-1	none	not affected	vulnerable code not in execute path	sles
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	dbg	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	dbg	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	dbg	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	dbg	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	dbg	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	golang.org/x/net@v0.52.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	nginx-ingress-controller	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	wait-shutdown	stdlib@v1.26.2	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	wait-shutdown	stdlib@v1.26.2	CVE-2026-33814	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	wait-shutdown	stdlib@v1.26.2	CVE-2026-39820	none	not affected	vulnerable code not present	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	wait-shutdown	stdlib@v1.26.2	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/nginx-ingress-controller:v1.14.5-hardened2	false	RKE2 v1.33.13	wait-shutdown	stdlib@v1.26.2	CVE-2026-42499	none	not affected	vulnerable code not present	gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	google.golang.org/grpc@v1.72.1	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-33811	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-39820	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-39836	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-cloud-provider:v1.33.11-0.20260415182038-2566e39d309b-build20260416	false	RKE2 v1.33.13	usr/local/bin/rke2-cloud-provider	stdlib@v1.25.9	CVE-2026-42499	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd	github.com/containerd/containerd/v2@v2.2.5-k3s1	CVE-2026-53488	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd	github.com/containerd/containerd/v2@v2.2.5-k3s1	CVE-2026-53489	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd	github.com/containerd/containerd/v2@v2.2.5-k3s1	CVE-2026-53492	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd	github.com/docker/cli@v29.1.5+incompatible	CVE-2025-15558	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd	github.com/docker/docker@v27.3.1+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd	github.com/docker/docker@v27.3.1+incompatible	CVE-2026-41567	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd	github.com/docker/docker@v27.3.1+incompatible	CVE-2026-42306	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd	go.opentelemetry.io/otel/sdk@v1.38.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd	go.opentelemetry.io/otel/sdk@v1.38.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.5-k3s1	CVE-2026-53488	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.5-k3s1	CVE-2026-53489	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd-shim-runc-v2	github.com/containerd/containerd/v2@v2.2.5-k3s1	CVE-2026-53492	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/containerd-shim-runc-v2	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	github.com/buger/jsonparser@v1.1.1	CVE-2026-32285	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	github.com/docker/docker@v27.1.1+incompatible	CVE-2026-34040	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	github.com/docker/docker@v27.1.1+incompatible	CVE-2026-41567	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	github.com/docker/docker@v27.1.1+incompatible	CVE-2026-42306	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	go.opentelemetry.io/otel/sdk@v1.35.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	go.opentelemetry.io/otel/sdk@v1.35.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	golang.org/x/net@v0.38.0	CVE-2026-39821	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/crictl	google.golang.org/grpc@v1.72.0	CVE-2026-33186	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/ctr	github.com/containerd/containerd/v2@v2.2.5-k3s1	CVE-2026-53488	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/ctr	github.com/containerd/containerd/v2@v2.2.5-k3s1	CVE-2026-53489	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/ctr	github.com/containerd/containerd/v2@v2.2.5-k3s1	CVE-2026-53492	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/ctr	google.golang.org/grpc@v1.78.0	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubectl	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	github.com/opencontainers/selinux@v1.11.1	CVE-2025-52881	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	go.opentelemetry.io/contrib/instrumentation/github.com/emicklei/go-restful/otelrestful@v0.42.0	CVE-2023-45142	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-24051	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	go.opentelemetry.io/otel/sdk@v1.33.0	CVE-2026-39883	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2025-47913	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39827	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39828	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39832	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-39835	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-42508	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/crypto@v0.36.0	CVE-2026-46595	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-25680	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-25681	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-27136	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-42502	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	golang.org/x/net@v0.38.0	CVE-2026-42506	none	not affected	vulnerable code not in execute path	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/kubelet	google.golang.org/grpc@v1.68.1	CVE-2026-33186	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-25680	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-25681	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-27136	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-33814	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-39821	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-42502	none	not affected	vulnerable code not present	gobinary
rancher/rke2-runtime:v1.33.13-rke2r1	false	RKE2 v1.33.13	bin/runc	golang.org/x/net@v0.43.0	CVE-2026-42506	none	not affected	vulnerable code not present	gobinary