Every CVE whose affected-product data names Suse Rancher, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (31)
CVE-2023-22647 — CVSS 9.9 (critical): An Improper Privilege Management vulnerability in SUSE Rancher allowed standard users to leverage their existing permissions to manipulate…
CVE-2023-22651 — CVSS 9.9 (critical): Improper Privilege Management vulnerability in SUSE Rancher allows Privilege Escalation. A failure in the update logic of Rancher's…
CVE-2022-43757 — CVSS 9.9 (critical): A Cleartext Storage of Sensitive Information vulnerability in SUSE Rancher allows users on managed clusters to gain access to credentials…
CVE-2021-36782 — CVSS 9.9 (critical): A Cleartext Storage of Sensitive Information vulnerability in SUSE Rancher allows authenticated Cluster Owners, Cluster Members, Project…
CVE-2019-11202 — CVSS 9.8 (critical): An issue was discovered that affects the following versions of Rancher: v2.0.0 through v2.0.13, v2.1.0 through v2.1.8, and v2.2.0 through…
CVE-2022-31247 — CVSS 9.1 (critical): An Improper Authorization vulnerability in SUSE Rancher, allows any user who has permissions to create/edit cluster role template bindings…
CVE-2020-10676 — CVSS 8.8 (high): In Rancher 2.x before 2.6.13 and 2.7.x before 2.7.4, an incorrectly applied authorization check allows users who have certain access to a…
CVE-2017-7297 — CVSS 8.8 (high): Rancher Labs rancher server 1.2.0+ is vulnerable to authenticated users disabling access control via an API call. This is fixed in versions…
CVE-2019-12274 — CVSS 8.8 (high): In Rancher 1 and 2 through 2.2.3, unprivileged users (if allowed to deploy nodes) can gain admin access to the Rancher management plane…
CVE-2019-12303 — CVSS 8.8 (high): In Rancher 2 through 2.2.3, Project owners can inject additional fluentd configuration to read files or execute arbitrary commands inside…
CVE-2026-41053 — CVSS 8.8 (high): Incorrect authentication caching in the team member ship expansion of the Rancher Github authentication provider caused it granting…
CVE-2018-20321 — CVSS 8.8 (high): An issue was discovered in Rancher 2 through 2.1.5. Any project member with access to the default namespace can mount the netes-default…
CVE-2026-41052 — CVSS 8.8 (high): Improper privilege handling could be used by users with Project Owner role to escalate privileges, in Rancher versions 2.14 before 2.14.2…
CVE-2023-22649 — CVSS 8.4 (high): A vulnerability has been identified which may lead to sensitive data being leaked into Rancher's audit logs. [Rancher Audit…
CVE-2022-43760 — CVSS 8.4 (high): An Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SUSE Rancher allows users in some…
CVE-2025-67601 — CVSS 8.3 (high): A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates and passing the -skip-verify flag to…
CVE-2019-6287 — CVSS 8.1 (high): In Rancher 2.0.0 through 2.1.5, project members have continued access to create, update, read, and delete namespaces in a project after…
CVE-2023-22648 — CVSS 8.0 (high): A Improper Privilege Management vulnerability in SUSE Rancher causes permission changes in Azure AD not to be reflected to users while they…
CVE-2022-43758 — CVSS 7.6 (high): A Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in SUSE Rancher allows code…
CVE-2026-44946 — CVSS 7.4 (high): A SAML authentication replay vulnerability in Rancher's Assertion Consumer Service (ACS) handler did not enforce one-time use of SAML…
CVE-2022-21953 — CVSS 7.4 (high): A Missing Authorization vulnerability in of SUSE Rancher allows authenticated user to create an unauthorized shell pod and kubectl access…
CVE-2021-36778 — CVSS 7.3 (high): A Incorrect Authorization vulnerability in SUSE Rancher allows administrators of third-party repositories to gather credentials that are…
CVE-2022-43759 — CVSS 7.2 (high): A Improper Privilege Management vulnerability in SUSE Rancher, allows users with access to the escalate verb on PRTBs to escalate…
CVE-2021-36784 — CVSS 7.2 (high): A Improper Privilege Management vulnerability in SUSE Rancher allows users with the restricted-admin role to escalate to full admin. This…
CVE-2022-43755 — CVSS 7.1 (high): A Insufficient Entropy vulnerability in SUSE Rancher allows attackers that gained knowledge of the cattle-token to continue abusing this…
CVE-2021-25313 — CVSS 7.1 (high): A Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Rancher allows remote attackers to…
CVE-2022-21951 — CVSS 6.8 (medium): A Cleartext Transmission of Sensitive Information vulnerability in SUSE Rancher, Rancher allows attackers on the network to read and change…
CVE-2019-13209 — CVSS 6.1 (medium): Rancher 2 through 2.2.4 is vulnerable to a Cross-Site Websocket Hijacking attack that allows an exploiter to gain access to clusters…
CVE-2021-4200 — CVSS 5.4 (medium): A Improper Privilege Management vulnerability in SUSE Rancher allows write access to the Catalog for any user when restricted-admin role is…
CVE-2019-11881 — CVSS 4.7 (medium): A vulnerability exists in Rancher before 2.2.4 in the login component, where the errorMsg parameter can be tampered to display arbitrary…