Lucene search
GoogleOSV:CVE-2021-31999HistoryJul 15, 2021 - 9:15 a.m.
CVE-2021-31999
2021-07-1509:15:08
Google
osv.dev
2
A Reliance on Untrusted Inputs in a Security Decision vulnerability in Rancher allows users in the cluster to act as others users in the cluster by forging the “Impersonate-User” or “Impersonate-Group” headers. This issue affects: Rancher versions prior to 2.5.9. Rancher versions prior to 2.4.16.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rancher | eq | 2.5.2-rc7 | |
| rancher | eq | 2.5.9-rc10 | |
| rancher | eq | 2.5.8-rc14 | |
| rancher | eq | 2.5.8-rc19 | |
| rancher | eq | 2.5.9-rc9 | |
| rancher | eq | 2.5.8-rc8 | |
| rancher | eq | 2.5.4-rc2 | |
| rancher | eq | 2.5.4-rc9 | |
| rancher | eq | 2.5.9-rc14 | |
| rancher | eq | 2.5.9-rc7 |
Related
cve
cve
CVE-2021-31999
2021-07-15 09:15:08
cnvd
cnvd
Rancher Labs Rancher has an unspecified vulnerability
2021-07-20 00:00:00
osv
osv
nvd
nvd
CVE-2021-31999
2021-07-15 09:15:08
cvelist
cvelist
prion
prion
Security feature bypass
2021-07-15 09:15:00
veracode
veracode
Privilege Escalation
2024-04-25 05:58:34
github
github
Rancher Privilege escalation vulnerability via malicious "Connection" header
2024-04-24 21:01:59