A information disclosure when DEBUG loglevel is set in SUSE Rancher AI Agent 1.0 before 1.0.2 could leak API keys or LLM response text with potential sensitive data into logfiles, allowing local attackers to misuse respective gained data or credentials.
| Vendor | Product | Versions |
|---|---|---|
| su | rancher | 1.0.0 |
Updated severity to HIGH, marked as actively exploited, and added affected version 1.0.1 with new tag 'information disclosure'.
Initial creation