CVE-2019-12274

Published: Jun 6, 2019Modified: Nov 21, 2024

8.8

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

In Rancher 1 and 2 through 2.2.3, unprivileged users (if allowed to deploy nodes) can gain admin access to the Rancher management plane because node driver options intentionally allow posting certain data to the cloud. The problem is that a user could choose to post a sensitive file such as /root/.kube/config or /var/lib/rancher/management-state/cred/kubeconfig-system.yaml.

Affected (2)

Products: Suse: Rancher

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Suse Rancher	From 1.0.0 to 1.6.28
Suse Rancher	From 2.0.0 to 2.2.3

Related CWEs

Exposure of Resource to Wrong Sphere

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

Missing Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

References (4)

https://forums.rancher.com/c/announcements

Source: cve@mitre.org

Release NotesVendor Advisory

https://forums.rancher.com/t/rancher-release-v2-2-4-addresses-rancher-cve-2019-12274-and-cve-2019-12303/14466

Source: cve@mitre.org

Release NotesVendor Advisory

https://forums.rancher.com/c/announcements

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

https://forums.rancher.com/t/rancher-release-v2-2-4-addresses-rancher-cve-2019-12274-and-cve-2019-12303/14466

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

Timeline

No history available yet.