Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Rancher API Server Cross-site Scripting Vulnerability
Vulnerability Description
A vulnerability has been identified in which unauthenticated cross-site scripting (XSS) in the API Server's public API endpoint can be exploited, allowing an attacker to execute arbitrary JavaScript code in the victim browser
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L
Vulnerability Type
Web页面中脚本相关HTML标签转义处理不恰当(基本跨站脚本)
Vulnerability Title
Rancher API Server 安全漏洞
Vulnerability Description
Rancher API Server是Rancher开源的一个 HTTP 客户端和更复杂的应用程序之间的接口。 Rancher API Server存在安全漏洞,该漏洞源于可存在跨站脚本(XSS),允许攻击者在受害者浏览器中执行任意JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A