CVE-2025-71261

Description

An attacker with network-level access between the SUSE Virtualization and Rancher Manager in SUSE Harvester before 1.8.0 could interfere with the TLS handshake and abuse it to bypass TLS as a security control.

References

• https://github.com/harvester/harvester/security/advisories/GHSA-pgh9-mpwc-8jjf