2 matches found
Rancher Server Security Bypass Vulnerability
Rancher Server is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:rancher:rancher";...
CVE-2017-7297
CVE-2017-7297 affects Rancher Server (Rancher Labs) 1.2.0+ where an authenticated user can disable access control via an API call. The vulnerability stemms from improper access control enforcement exposed through the Rancher API, enabling unauthorized modification of access controls. Impact is re...