GHSA-hx8w-ghh8-r4xf, CVE-2021-4200
go/github.com/rancher/rancher
Improper Privilege Management
A Improper Privilege Management vulnerability in SUSE Rancher allows write access to the Catalog for any user when restricted-admin role is enabled. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4.
All versions starting from 2.5.0 before 2.5.13, all versions starting from 2.6.0 before 2.6.4
Upgrade to versions 2.6.4 or above.
2022-05-03
source |