CVE-2025-54468: Rancher sends sensitive information to external services through the `/meta/proxy` endpoint
(updated )
A vulnerability has been identified within Rancher Manager whereby Impersonate-Extra-* headers are being sent to an external entity, for example amazonaws.com, via the /meta/proxy Rancher endpoint. These headers may contain identifiable and/or sensitive information e.g. email addresses.
If the authentication provider is configured to have email or other sensitive and/or identifiable information as part of the username and principal ID then when a new cloud credential is being created in Rancher Manager this information is sent to an external entity such as amazonaws.com, in case of an AWS cloud credentials, in Impersonate-Extra-Username and/or Impersonate-Extra-Principalid headers. Please note that neither password, password hashes or Rancher’s related authentication tokens are leaked in those requests.
The entities to which such information is sent to are limited by the allowlisted domains specified in nodedrivers.management.cattle.io objects.
For example, the Amazon EC2 node driver contains the following allowlisted domains:
iam.amazonaws.comiam.us-gov.amazonaws.comiam.%.amazonaws.com.cniam.global.api.awsec2.%.amazonaws.comec2.%.amazonaws.com.cnec2.%.api.awseks.%.amazonaws.comeks.%.amazonaws.com.cneks.%.api.awskms.%.amazonaws.comkms.%.amazonaws.com.cnkms.%.api.aws
While the DigitalOcean driver contains the following allowlisted domain:
api.digitalocean.com
References
Code Behaviors & Features
Detect and mitigate CVE-2025-54468 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →