Lucene search
K

3 matches found

Github Security Blog
Github Security Blog
added 2023/01/25 7:36 p.m.44 views

Authenticated user can gain unauthorized shell pod and kubectl access in the local cluster

Impact An issue was discovered in Rancher where an authorization logic flaw allows an authenticated user on any downstream cluster to 1 open a shell pod in the Rancher local cluster and 2 have limited kubectl access to it. The expected behavior is that a user does not have such access in the...

8.8CVSS0.3AI score0.0047EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/01/25 7:35 p.m.33 views

GHSA-7M72-MH5R-6J3R Privilege escalation in project role template binding (PRTB) and -promoted roles

Impact An issue was discovered in Rancher versions from 2.5.0 up to and including 2.5.16 and from 2.6.0 up to and including 2.6.9, where an authorization logic flaw allows privilege escalation via project role template binding PRTB and -promoted roles. This issue is not present in Rancher 2.7...

7.2CVSS7.7AI score0.00677EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2023/01/25 7:35 p.m.39 views

Privilege escalation in project role template binding (PRTB) and -promoted roles

Impact An issue was discovered in Rancher versions from 2.5.0 up to and including 2.5.16 and from 2.6.0 up to and including 2.6.9, where an authorization logic flaw allows privilege escalation via project role template binding PRTB and -promoted roles. This issue is not present in Rancher 2.7...

8.8CVSS8.1AI score0.00677EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder