CVE-2025-23389

Published April 11th, 2025

View on NVD ↗

CVSS v3

8.4

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

A Improper Access Control vulnerability in SUSE rancher allows a local user to impersonate other identities through SAML Authentication on first login. This issue affects rancher: from 2.8.0 before 2.8.13, from 2.9.0 before 2.9.7, from 2.10.0 before 2.10.3.

rancher/rancher

Complete container management platform

GitHub

25.7K