CVE-2019-13209
MEDIUMRancher 2.0.0-2.2.4 - Cross-Site Websocket Hijacking
Title source: llmDescription
Rancher 2 through 2.2.4 is vulnerable to a Cross-Site Websocket Hijacking attack that allows an exploiter to gain access to clusters managed by Rancher. The attack requires a victim to be logged into a Rancher server, and then to access a third-party site hosted by the exploiter. Once that is accomplished, the exploiter is able to execute commands against the cluster's Kubernetes API with the permissions and identity of the victim.
References (2)
Core 2
Core References
Release Notes, Vendor Advisory x_refsource_misc
https://forums.rancher.com/c/announcements
Release Notes, Vendor Advisory x_refsource_confirm
https://forums.rancher.com/t/rancher-release-v2-2-5-addresses-rancher-cve-2019-13209/14801
Scores
CVSS v3
6.1
EPSS
0.0024
EPSS Percentile
46.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (2)
rancher/rancher
2.0.0 - 2.0.16Go
suse/rancher
2.0.0 - 2.2.4
Published
Sep 04, 2019
Tracked Since
Feb 18, 2026