Rancher Security Vulnerabilities and Issues — Rancher CVE List

Lucene search

SuseRancher

4 matches found

CVE•added 2022/05/25 9:15 a.m.•85 views

CVE-2022-21951

A Cleartext Transmission of Sensitive Information vulnerability in SUSE Rancher, Rancher allows attackers on the network to read and change network data due to missing encryption of data transmitted via the network when a cluster is created from an RKE template with the CNI value overridden This is...

6.8CVSS6.4AI score0.00067EPSS

CVE•added 2022/05/02 12:16 p.m.•84 views

CVE-2021-36778

A Incorrect Authorization vulnerability in SUSE Rancher allows administrators of third-party repositories to gather credentials that are sent to their servers. This issue affects: SUSE Rancher Rancher versions prior to 2.5.12; Rancher versions prior to 2.6.3.

7.5CVSS7.2AI score0.00305EPSS

CVE•added 2022/05/02 12:16 p.m.•77 views

CVE-2021-36784

A Improper Privilege Management vulnerability in SUSE Rancher allows users with the restricted-admin role to escalate to full admin. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4.

7.2CVSS7AI score0.00337EPSS

CVE•added 2022/05/02 12:16 p.m.•77 views

CVE-2021-4200

A Improper Privilege Management vulnerability in SUSE Rancher allows write access to the Catalog for any user when restricted-admin role is enabled. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4.

5.5CVSS5.8AI score0.00282EPSS