A Improper Access Control vulnerability in Rancher, allows users in the cluster to make request to cloud providers by creating requests with the cloud-credential ID. Rancher in this case would attach the requested credentials without further checks This issue affects: Rancher versions before 2.5.9; Rancher versions before 2.4.16.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rancher rancher |