VYPR
Vendor

Rancher

Products
9
CVEs
42
Across products
42
Status
Private

Products

9

Recent CVEs

42
View all 42 CVEs →
  • CVE-2022-45157CriNov 13, 2024
    risk 0.59cvss 9.1epss 0.00

    A vulnerability has been identified in the way that Rancher stores vSphere's CPI (Cloud Provider Interface) and CSI (Container Storage Interface) credentials used to deploy clusters through the vSphere cloud provider. This issue leads to the vSphere CPI and CSI passwords being…

  • CVE-2026-41050CriMay 13, 2026
    risk 0.57cvss 9.9epss 0.00

    Fleet's Helm deployer did not fully apply ServiceAccount impersonation in two code paths, allowing a tenant with git push access to a Fleet-monitored repository to read secrets from any namespace on every downstream cluster targeted by their `GitRepo`.

  • CVE-2023-32191CriOct 16, 2024
    risk 0.57cvss 9.9epss 0.01

    When RKE provisions a cluster, it stores the cluster state in a configmap called `full-cluster-state` inside the `kube-system` namespace of the cluster itself. The information available in there allows non-admin users to escalate to admin.

  • CVE-2023-22650HigOct 16, 2024
    risk 0.57cvss 8.8epss 0.01

    A vulnerability has been identified in which Rancher does not automatically clean up a user which has been deleted from the configured authentication provider (AP). This characteristic also applies to disabled or revoked users, Rancher will not reflect these modifications which…

  • CVE-2024-58267HigOct 2, 2025
    risk 0.52cvss 8.0epss 0.00

    A vulnerability has been identified within Rancher Manager whereby the SAML authentication from the Rancher CLI tool is vulnerable to phishing attacks. The custom authentication protocol for SAML-based providers can be abused to steal Rancher’s authentication tokens.

  • CVE-2024-22036CriApr 16, 2025
    risk 0.52cvss 9.1epss 0.01

    A vulnerability has been identified within Rancher where a cluster or node driver can be used to escape the chroot jail and gain root access to the Rancher container itself. In production environments, further privilege escalation is possible based on living off the land…

  • CVE-2025-23391CriApr 11, 2025
    risk 0.52cvss 9.1epss 0.00

    A Incorrect Privilege Assignment vulnerability in SUSE rancher allows a Restricted Administrator to change the password of Administrators and take over their accounts. This issue affects rancher: from 2.8.0 before 2.8.14, from 2.9.0 before 2.9.8, from 2.10.0 before 2.10.4.

  • CVE-2024-22030HigOct 16, 2024
    risk 0.52cvss 8.0epss 0.00

    A vulnerability has been identified within Rancher that can be exploited in narrow circumstances through a man-in-the-middle (MITM) attack. An attacker would need to have control of an expired domain or execute a DNS spoofing/hijacking attack against the domain to exploit…

  • CVE-2024-52281HigApr 16, 2025
    risk 0.51cvss 8.9epss 0.00

    A: Improper Neutralization of Input During Web Page Generation vulnerability in SUSE rancher allows a malicious actor to perform a Stored XSS attack through the cluster description field. This issue affects rancher: from 2.9.0 before 2.9.4.

  • CVE-2026-44543HigMay 28, 2026
    risk 0.50cvss 8.7epss 0.00

    Local Path Provisioner provides a way for the Kubernetes users to utilize the local storage in each node. Prior to 0.0.36, a malicious user with permission to edit the local-path-config ConfigMap in the local-path-storage namespace can manipulate the helperPod.yaml template used…

  • CVE-2024-58260HigOct 2, 2025
    risk 0.49cvss 7.6epss 0.00

    A vulnerability has been identified within Rancher Manager where a missing server-side validation on the `.username` field in Rancher can allow users with update permissions on other User resources to cause denial of access for targeted accounts.

  • CVE-2026-25705HigMay 13, 2026
    risk 0.48cvss 8.4epss 0.00

    A vulnerability has been identified in [Rancher's Extensions](https://ranchermanager.docs.rancher.com/integrations-in-rancher/rancher-extensions) where malicious code can be injected in Rancher through a path traversal in the `compressedEndpoint` field inside a `UIPlugin`…

  • CVE-2025-23389HigApr 11, 2025
    risk 0.48cvss 8.4epss 0.00

    A Improper Access Control vulnerability in SUSE rancher allows a local user to impersonate other identities through SAML Authentication on first login. This issue affects rancher: from 2.8.0 before 2.8.13, from 2.9.0 before 2.9.7, from 2.10.0 before 2.10.3.

  • CVE-2023-32193HigOct 16, 2024
    risk 0.47cvss 8.3epss 0.00

    A vulnerability has been identified in which unauthenticated cross-site scripting (XSS) in Norman's public API endpoint can be exploited. This can lead to an attacker exploiting the vulnerability to trigger JavaScript code and execute commands remotely.

  • CVE-2023-32192HigOct 16, 2024
    risk 0.47cvss 8.3epss 0.00

    A vulnerability has been identified in which unauthenticated cross-site scripting (XSS) in the API Server's public API endpoint can be exploited, allowing an attacker to execute arbitrary JavaScript code in the victim browser

  • CVE-2024-58259HigSep 2, 2025
    risk 0.46cvss 8.2epss 0.00

    A vulnerability has been identified within Rancher Manager in which it did not enforce request body size limits on certain public (unauthenticated) and authenticated API endpoints. This allows a malicious user to exploit this by sending excessively large payloads, which are…

  • CVE-2025-23388HigApr 11, 2025
    risk 0.46cvss 8.2epss 0.01

    A Stack-based Buffer Overflow vulnerability in SUSE rancher allows for denial of service.This issue affects rancher: from 2.8.0 before 2.8.13, from 2.9.0 before 2.9.7, from 2.10.0 before 2.10.3.

  • CVE-2023-32198higApr 25, 2025
    risk 0.45cvss epss 0.00

    ### Impact A vulnerability has been identified in Steve where by default it was using an insecure option that did not validate the certificate presented by the remote server while performing a TLS connection. This could allow the execution of a man-in-the-middle (MitM) attack…

  • CVE-2024-52284HigSep 2, 2025
    risk 0.43cvss 7.7epss 0.00

    Unauthorized disclosure of sensitive data: Any user with `GET` or `LIST` permissions on `BundleDeployment` resources could retrieve Helm values containing credentials or other secrets.

  • CVE-2024-52280HigApr 11, 2025
    risk 0.43cvss 7.7epss 0.00

    A Exposure of Sensitive Information to an Unauthorized Actor vulnerability in SUSE rancher which allows users to watch resources they are not allowed to access, when they have at least some generic permissions on the type. This issue affects rancher: before 2175e09, before…