CVE-2025-67860— NeuVector scanner insecurely handles passwords as command arguments

CVSS 3.8 · Low EPSS 0.02% · P4 Updated Feb 26, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-67860

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

NeuVector scanner insecurely handles passwords as command arguments

Source: NVD (National Vulnerability Database)

Vulnerability Description

A vulnerability has been identified in the NeuVector scanner where the scanner process accepts registry and controller credentials as command-line arguments, potentially exposing sensitive credentials to local users.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

不充分的凭证保护机制

Source: NVD (National Vulnerability Database)

Vulnerability Title

Harvester 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Harvester是harvesterhci开源的一个现代的、开放的、可互操作的、基于Kubernetes的超融合基础设施（HCI）解决方案。 Harvester存在安全漏洞，该漏洞源于扫描器进程将注册表和控制器凭据作为命令行参数接受，可能导致敏感凭据暴露给本地用户。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
SUSE	harvester	4.0 ~ 4.072	-

II. Public POCs for CVE-2025-67860

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-67860

请登录查看更多情报信息。

https://nvd.nist.gov/vuln/detail/CVE-2025-67860

Same Patch Batch · SUSE · 2026-02-25 · 3 CVEs total

CVE-2025-62878	9.9 CRITICAL	Local Path Provisioner vulnerable to Path Traversal via parameters.pathPattern
CVE-2025-67601	8.3 HIGH	Rancher CLI skips TLS verification on Rancher CLI login command

IV. Related Vulnerabilities

Same product: harvester

CVE-2025-62877
Harvest may expose OS default ssh login password via SUSE Vi

Same vendor: SUSE

Same weakness: CWE-522

V. Comments for CVE-2025-67860

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-67860— NeuVector scanner insecurely handles passwords as command arguments

I. Basic Information for CVE-2025-67860

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2025-67860

III. Intelligence Information for CVE-2025-67860

Same Patch Batch · SUSE · 2026-02-25 · 3 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2025-67860

Leave a comment