CVE-2024-22030
Aliases:GHSA-h4h5-9833-v2p4GO-2024-3161
Advisory lineage Upstream: 0 Downstream: 3
Deferred
Published: 16 Oct 2024, 13:24
Last modified:16 Oct 2024, 14:25
Vulnerability Summary
Overall Risk (default)
medium
32/100 CVSS Score
8 HIGH
v3.1 (cve.org)
EPSS Score
0.09% LOW
0% probability +0.03%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
16 Oct 2024, 13:24
Published
Vulnerability first disclosed
16 Oct 2024, 14:25
Last Modified
Vulnerability information updated
Description
A vulnerability has been identified within Rancher that can be exploited in narrow circumstances through a man-in-the-middle (MITM) attack. An attacker would need to have control of an expired domain or execute a DNS spoofing/hijacking attack against the domain to exploit this vulnerability. The targeted domain is the one used as the Rancher URL.
CVSS Metrics
- v3.1•HIGH•Score: 8CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS Trends
Current EPSS score: 0.09%• Percentile: 26%
Techniques & Countermeasures
- CWE-295•Improper Certificate Validation
The product does not validate, or incorrectly validates, a certificate.
Affected Systems
- github.com/rancher•rancher
≥ 2.7.0, < 2.7.15 | ≥ 2.8.0, < 2.8.8 | ≥ 2.9.0, < 2.9.2 | all
- suse•rancher
≥ 2.7.0, < 2.7.15 | ≥ 2.8.0, < 2.8.8 | ≥ 2.9.0, < 2.9.2
References (7)
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-22030
- https://github.com/rancher/rancher/security/advisories/GHSA-h4h5-9833-v2p4
- https://nvd.nist.gov/vuln/detail/CVE-2024-22030
- https://github.com/rancher/rancher
- https://github.com/rancherlabs/support-tools/tree/master/windows-agent-strict-verify
- https://pkg.go.dev/vuln/GO-2024-3161
- https://ranchermanager.docs.rancher.com/getting-started/installation-and-upgrade/installation-references/tls-settings