rancher labs

Top products

The 11 most recently published vulnerabilities affecting rancher labs.

• CVE-2023-32197Rancher's External RoleTemplates can lead to privilege escalation6.6Apr 16, 2025
• CVE-2024-52281Stored Cross-site Scripting vulnerability in Rancher UI8.9Apr 16, 2025
• CVE-2025-23391Rancher: Restricted Administrator can change Administrator's passwords9.1Apr 11, 2025
• CVE-2022-45157Exposure of vSphere's CPI and CSI credentials in Rancher9.1Nov 13, 2024
• CVE-2023-32191rke's credentials are stored in the RKE1 Cluster state ConfigMap9.9Oct 16, 2024
• CVE-2023-22651Improper Privilege Management vulnerability in SUSE Rancher allows Privilege Escalation. A failure in the update logic of Rancher's admission Webhook may lead to the misconfiguration of the Webhoo...9.9May 4, 2023
• CVE-2022-31247Rancher: Downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB)9.1Sep 7, 2022
• CVE-2021-36782Rancher: Plaintext storage and exposure of credentials in Rancher API and cluster.management.cattle.io object9.9Sep 7, 2022
• CVE-2021-36783Rancher: Failure to properly sanitize credentials in cluster template answers9.9Sep 7, 2022
• CVE-2021-31999Rancher: Privilege escalation vulnerability via malicious Connection header8.8Jul 15, 2021
• CVE-2021-25318rancher: API group not properly specified when creating Kubernetes RBAC resources8.8Jul 15, 2021