Vulnerabilities > CVE-2021-25313 - Unspecified vulnerability in Suse Rancher
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
A Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rancher allows remote attackers to execute JavaScript via malicious links. This issue affects: SUSE Rancher Rancher versions prior to 2.5.6.
Vulnerable Configurations
References
- https://bugzilla.suse.com/show_bug.cgi?id=1181852
- https://bugzilla.suse.com/show_bug.cgi?id=1181852
- https://github.com/rancher/rancher/issues/31583
- https://github.com/rancher/rancher/issues/31583
- https://github.com/rancher/rancher/releases/tag/v2.5.6
- https://github.com/rancher/rancher/releases/tag/v2.5.6