8 matches found
GHSA-95FC-G4GJ-MQMX vulnerabilities
Vulnerabilities for packages: rancher...
GHSA-95FC-G4GJ-MQMX vulnerabilities
Vulnerabilities for packages: rancher, harvester, rancher-agent, harvester-fips...
GHSA-7J59-V9QR-6FQ9 vulnerabilities
Vulnerabilities for packages: rancher-agent, azure-service-operator, rancher...
GHSA-R8F4-HV23-6QP6 vulnerabilities
Vulnerabilities for packages: rancher...
GHSA-833M-37F7-JQ55 vulnerabilities
Vulnerabilities for packages: rancher...
Allocation of Resources Without Limits or Throttling
Overview github.com/rancher/rancher/pkg/settings is a complete container management platform Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the request body processing. An attacker can cause the server to crash or become unresponsive b...
Improper Ownership Management
Overview Affected versions of this package are vulnerable to Improper Ownership Management for projects, whose namespace defaults to being the project name, regardless of cluster. A user with permission to create a project can escalate privileges to those of a user who owns a project by the same...
Incorrect Privilege Assignment
Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment that allows a Restricted Administrator user to change the password of an Administrator account and escalate privileges by taking over the Administrator account. Workaround This vulnerability can be avoided...