github.com/rancher/rancher is vulnerable to Permission Bypass. The vulnerability due to a misconfiguration in RBAC rules, which grants excessive permissions for the create
or *
global role for the namespaces
resource type. This flaw allows an attacker to access, create, update, or delete a namespace in the project.