Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
rancher desktop: Dashboard API is network accessible
Vulnerability Description
A Exposure of Resource to Wrong Sphere vulnerability in Rancher Desktop of SUSE allows attackers in the local network to connect to the Dashboard API (steve) to carry out arbitrary actions. This issue affects: SUSE Rancher Desktop versions prior to V.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
Vulnerability Type
将资源暴露给错误范围
Vulnerability Title
SUSE Rancher Desktop 访问控制错误漏洞
Vulnerability Description
Rancher Desktop是一款开源软件,可以在 Mac、Windows 和 Linux 系统中以桌面形式管理 Kubernetes 和容器。 SUSE Rancher Desktop V之前版本存在访问控制错误漏洞,本地网络的攻击者可以利用该漏洞连接到Dashboard API (steve) 以执行任意操作。
CVSS Information
N/A
Vulnerability Type
N/A