CVE-2021-4200

Summary

A Improper Privilege Management vulnerability in SUSE Rancher allows write access to the Catalog for any user when restricted-admin role is enabled. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4.

Affected Software

VendorProductVersion RangeStatus
SUSERancherRancher < 2.5.13affected
SUSERancherRancher < 2.6.4affected

Weaknesses

  • CWE-269: CWE-269: Improper Privilege Management

ADP Enrichment

CVE Program Container

Additional References

References