Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authenticated user can gain unauthorized shell pod and kubectl access in the local cluster
Vulnerability Description
A Missing Authorization vulnerability in of SUSE Rancher allows authenticated user to create an unauthorized shell pod and kubectl access in the local cluster This issue affects: SUSE Rancher Rancher versions prior to 2.5.17; Rancher versions prior to 2.6.10; Rancher versions prior to 2.7.1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
Vulnerability Type
授权机制缺失
Vulnerability Title
Rancher Labs Rancher 安全漏洞
Vulnerability Description
Rancher Labs Rancher是美国Rancher Labs公司的一套开源的企业级容器管理平台。 SUSE Rancher存在安全漏洞,该漏洞源于存在授权缺失漏洞,允许经过身份验证的用户在本地集群中创建未经授权的访问。
CVSS Information
N/A
Vulnerability Type
N/A