CVE-2023-22648

01.06.2023, 13:15

A Improper Privilege Management vulnerability in SUSE Rancher causes permission changes in Azure AD not to be reflected to users
while they are logged in the Rancher UI. This would cause the users to
retain their previous permissions in Rancher, even if they change groups
on Azure AD, for example, to a lower privileged group, or are removed
from a group, thus retaining their access to Rancher instead of losing
it.
This issue affects Rancher: from >= 2.6.7 before < 2.6.13, from >= 2.7.0 before < 2.7.4.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
suse	CNA	8 HIGH	NETWORK	LOW	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 34%

Vendor	Product	Version
suse	rancher	2.6.7 ≤ 𝑥 < 2.6.13
suse	rancher	2.7.0 ≤ 𝑥 < 2.7.4

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-271 - Privilege Dropping / Lowering Errors
The software does not drop privileges before passing control of a resource to an actor that does not have those privileges.

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-22648

https://github.com/rancher/rancher/security/advisories/GHSA-vf6j-6739-78m8

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-22648

https://github.com/rancher/rancher/security/advisories/GHSA-vf6j-6739-78m8