CVE-2021-36784

🗓️ 02 May 2022 07:05:14Reported by suseType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 84 Views

A Privilege Management vulnerability in SUSE Rancher allows restricted-admin role escalation

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2021-36784	2 May 202216:27	–	circl
CNNVD	Rancher Labs Rancher 安全漏洞	2 May 202200:00	–	cnnvd
CNVD	Rancher Labs Rancher Licensing Issue Vulnerability (CNVD-2022-65014)	7 May 202200:00	–	cnvd
Cvelist	CVE-2021-36784 Privilege escalation for users with create/update permissions in Global Roles	2 May 202207:05	–	cvelist
EUVD	EUVD-2022-4453	3 Oct 202520:07	–	euvd
Github Security Blog	Privilege escalation for users with create/update permissions in Global Roles in Rancher	2 May 202219:39	–	github
NVD	CVE-2021-36784	2 May 202212:16	–	nvd
OSV	GHSA-JWVR-VV7P-GPWQ Privilege escalation for users with create/update permissions in Global Roles in Rancher	2 May 202219:39	–	osv
Prion	Privilege escalation	2 May 202212:16	–	prion
SUSE CVE	SUSE CVE-2021-36784	15 Feb 202303:39	–	susecve

NVD

Node

suse rancherRange<2.5.13

suse rancherRange2.6.0–2.6.4

[
  {
    "product": "Rancher",
    "vendor": "SUSE",
    "versions": [
      {
        "lessThan": "2.5.13",
        "status": "affected",
        "version": "Rancher",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Rancher",
    "vendor": "SUSE",
    "versions": [
      {
        "lessThan": "2.6.4",
        "status": "affected",
        "version": "Rancher",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
bugzilla	www.bugzilla.suse.com/show_bug.cgi

21 Nov 2024 06:14Current

7High risk

Vulners AI Score7

CVSS 26.5

CVSS 3.17.2

EPSS0.00484

CWE-269