Lucene search

CVE-2022-43759

🗓️ 07 Feb 2023 13:09:15Reported by suseType

Improper Privilege Management vuln. in SUSE Rancher allows users to escalate permissions. Affected versions: <2.5.17, <2.6.1

Reporter	Title	Published	Views	Family All 7
OSV	CVE-2022-43759	7 Feb 202313:15	–	osv
OSV	Privilege escalation in project role template binding (PRTB) and -promoted roles	25 Jan 202319:35	–	osv
Cvelist	CVE-2022-43759 Rancher: Privilege escalation via promoted roles	7 Feb 202300:00	–	cvelist
NVD	CVE-2022-43759	7 Feb 202313:15	–	nvd
Veracode	Privilege Escalation	27 Jan 202303:54	–	veracode
Prion	Privilege escalation	7 Feb 202313:15	–	prion
Github Security Blog	Privilege escalation in project role template binding (PRTB) and -promoted roles	25 Jan 202319:35	–	github

Nvd

Node

suse rancherRange2.5.0–2.5.17

suse rancherRange2.6.0–2.6.10

[
  {
    "vendor": "SUSE",
    "product": "Rancher",
    "versions": [
      {
        "version": "Rancher",
        "status": "affected",
        "lessThan": "2.5.17",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "SUSE",
    "product": "Rancher",
    "versions": [
      {
        "version": "Rancher",
        "status": "affected",
        "lessThan": "2.6.10",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
bugzilla	www.bugzilla.suse.com/show_bug.cgi

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Feb 2023 13:15Current

7.9High risk

Vulners AI Score7.9

CVSS37.2 - 8.8

EPSS0.00054

CWE-269