Vulnerabilities > Rancher

DATE CVE VULNERABILITY TITLE RISK
2022-04-04 CVE-2021-36775 Unspecified vulnerability in Rancher
a Improper Access Control vulnerability in SUSE Rancher allows users to keep privileges that should have been revoked.
network
low complexity
rancher
8.8
2022-04-04 CVE-2021-36776 Unspecified vulnerability in Rancher
A Improper Access Control vulnerability in SUSE Rancher allows remote attackers impersonate arbitrary users.
network
low complexity
rancher
8.8
2021-07-15 CVE-2021-25318 Incorrect Permission Assignment for Critical Resource vulnerability in Rancher
A Incorrect Permission Assignment for Critical Resource vulnerability in Rancher allows users in the cluster to modify resources they should not have access to.
network
low complexity
rancher CWE-732
8.8
2021-07-15 CVE-2021-25320 Unspecified vulnerability in Rancher
A Improper Access Control vulnerability in Rancher, allows users in the cluster to make request to cloud providers by creating requests with the cloud-credential ID.
network
low complexity
rancher
critical
9.9
2021-07-15 CVE-2021-31999 Unspecified vulnerability in Rancher
A Reliance on Untrusted Inputs in a Security Decision vulnerability in Rancher allows users in the cluster to act as others users in the cluster by forging the "Impersonate-User" or "Impersonate-Group" headers.
network
low complexity
rancher
8.8