Lucene search
K

8 matches found

Cvelist
Cvelist
added 2025/04/16 8:40 a.m.31 views

CVE-2023-32197 Rancher's External RoleTemplates can lead to privilege escalation

A Improper Privilege Management vulnerability in SUSE rancher in RoleTemplateobjects when external=true is set can lead to privilege escalation in specific scenarios.This issue affects rancher: from 2.7.0 before 2.7.14, from 2.8.0 before 2.8.5...

7.5CVSS0.00539EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/16 8:40 a.m.5 views

CVE-2023-32197 Rancher's External RoleTemplates can lead to privilege escalation

A Improper Privilege Management vulnerability in SUSE rancher in RoleTemplateobjects when external=true is set can lead to privilege escalation in specific scenarios.This issue affects rancher: from 2.7.0 before 2.7.14, from 2.8.0 before 2.8.5...

7.5CVSS6.9AI score0.00539EPSS
Exploits0References2
CVE
CVE
added 2025/04/16 8:40 a.m.120 views

CVE-2023-32197

The CVE-2023-32197 issue is an improper privilege management vulnerability in SUSE Rancher involving RoleTemplate objects when external=true is set, enabling privilege escalation in certain scenarios. Affected versions include Rancher 2.7.0–2.7.13 and 2.8.0–2.8.4 (fixed in 2.7.14 and 2.8.5). The ...

7.5CVSS8AI score0.00539EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/11/06 12:0 a.m.54 views

openSUSE Security Advisory (SUSE-SU-2024:3911-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.9CVSS7.6AI score0.97781EPSS
Exploits17References3
OSV
OSV
added 2024/10/25 7:39 p.m.10 views

GHSA-X7XJ-JVWP-97RV RKE2 allows privilege escalation in Windows nodes due to Insecure Access Control Lists

Impact A vulnerability has been identified whereby RKE2 deployments in Windows nodes have weak Access Control Lists ACL, allowing BUILTIN\Users or NT AUTHORITY\Authenticated Users to view or edit sensitive files which could lead to privilege escalation. The affected files include binaries, script...

9.1CVSS7.8AI score0.00539EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2024/10/25 7:39 p.m.17 views

RKE2 allows privilege escalation in Windows nodes due to Insecure Access Control Lists

Impact A vulnerability has been identified whereby RKE2 deployments in Windows nodes have weak Access Control Lists ACL, allowing BUILTIN\Users or NT AUTHORITY\Authenticated Users to view or edit sensitive files which could lead to privilege escalation. The affected files include binaries, script...

7.5CVSS6.1AI score0.00539EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/10/25 7:35 p.m.15 views

GHSA-7H8M-PVW3-5GH4 Rancher allows privilege escalation in Windows nodes due to Insecure Access Control Lists

Impact A vulnerability has been identified whereby Rancher Manager deployments containing Windows nodes have weak Access Control Lists ACL, allowing BUILTIN\Users or NT AUTHORITY\Authenticated Users to view or edit sensitive files which could lead to privilege escalation. The affected files inclu...

9.4CVSS7.9AI score0.00539EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/10/25 7:35 p.m.20 views

Rancher allows privilege escalation in Windows nodes due to Insecure Access Control Lists

Impact A vulnerability has been identified whereby Rancher Manager deployments containing Windows nodes have weak Access Control Lists ACL, allowing BUILTIN\Users or NT AUTHORITY\Authenticated Users to view or edit sensitive files which could lead to privilege escalation. The affected files inclu...

7.5CVSS6.1AI score0.00539EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder