CVE-2023-22647

CRITICAL

SUSE Rancher - Privilege Escalation

Title source: llm

Description

An Improper Privilege Management vulnerability in SUSE Rancher allowed standard users to leverage their existing permissions to manipulate Kubernetes secrets in the local cluster, resulting in the secret being deleted, but their read-level permissions to the secret being preserved. When this operation was followed-up by other specially crafted commands, it could result in the user gaining access to tokens belonging to service accounts in the local cluster. This issue affects Rancher: from >= 2.6.0 before < 2.6.13, from >= 2.7.0 before < 2.7.4.

References (2)

[Issue Tracking, Vendor Advisory] https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-22647

[Vendor Advisory] https://github.com/rancher/rancher/security/advisories/GHSA-p976-h52c-26p6

Scores

CVSS v3 9.9

EPSS 0.0078

EPSS Percentile 73.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-267

Status published

Products (2)

rancher/rancher 2.6.0 - 2.6.13Go

suse/rancher 2.6.0 - 2.6.13

Published Jun 01, 2023

Tracked Since Feb 18, 2026