CVE-2023-22647

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-22647
An Improper Privilege Management vulnerability in SUSE Rancher allowed standard users to leverage their existing permissions to manipulate Kubernetes secrets in the local cluster, resulting in the secret being deleted, but their read-level permissions to the secret being preserved. When this operation was followed-up by other specially crafted commands, it could result in the user gaining access to tokens belonging to service accounts in the local cluster. This issue affects Rancher: from >= 2.6.0 before < 2.6.13, from >= 2.7.0 before < 2.7.4.

8.0 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 2.1 / Impact : 5.9

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/rancher/rancher/security/advisories/GHSA-p976-h52c-26p6 Vendor Advisory
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-22647 Issue Tracking Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:suse:rancher:*:*:*:*:*:*:*:*
cpe:2.3:a:suse:rancher:*:*:*:*:*:*:*:*
History

09 Oct 2024, 09:15

Type Values Removed Values Added
CWE CWE-281 CWE-267
Summary An Improper Privilege Management vulnerability in SUSE Rancher allowed standard users to leverage their existing permissions to manipulate Kubernetes secrets in the local cluster, resulting in the secret being deleted, but their read-level permissions to the secret being preserved. When this operation was followed-up by other specially crafted commands, it could result in the user gaining access to tokens belonging to service accounts in the local cluster. This issue affects Rancher: from >= 2.6.0 before < 2.6.13, from >= 2.7.0 before < 2.7.4. An Improper Privilege Management vulnerability in SUSE Rancher allowed standard users to leverage their existing permissions to manipulate Kubernetes secrets in the local cluster, resulting in the secret being deleted, but their read-level permissions to the secret being preserved. When this operation was followed-up by other specially crafted commands, it could result in the user gaining access to tokens belonging to service accounts in the local cluster. This issue affects Rancher: from >= 2.6.0 before < 2.6.13, from >= 2.7.0 before < 2.7.4.

09 Jun 2023, 17:55

Type Values Removed Values Added
CPE cpe:2.3:a:suse:rancher:*:*:*:*:*:*:*:*
First Time Suse
Suse rancher
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 8.0
CWE CWE-269 CWE-281
References (MISC) https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-22647 - (MISC) https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-22647 - Issue Tracking, Vendor Advisory
References (MISC) https://github.com/rancher/rancher/security/advisories/GHSA-p976-h52c-26p6 - (MISC) https://github.com/rancher/rancher/security/advisories/GHSA-p976-h52c-26p6 - Vendor Advisory

01 Jun 2023, 13:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-06-01 13:15

Updated : 2024-10-09 09:15

NVD link : CVE-2023-22647

Mitre link : CVE-2023-22647

JSON object : View

Products Affected

suse

  • rancher
CWE
CWE-267

Privilege Defined With Unsafe Actions