CVE-2021-25313: Cross-site Scripting

March 5, 2021 (updated March 13, 2021)

A Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Rancher allows remote attackers to execute JavaScript via malicious links. This issue affects: SUSE Rancher Rancher

References

bugzilla.suse.com/show_bug.cgi?id=1181852
github.com/rancher/rancher/issues/31583
nvd.nist.gov/vuln/detail/CVE-2021-25313

Detect and mitigate CVE-2021-25313 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →