[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-22030":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":27,"aliases":28,"duplicate_of":9,"upstream":31,"downstream":32,"duplicates":39,"related":40,"reserved_at":9,"published_at":44,"modified_at":45,"state":46,"summary":47,"references_raw":56,"kevs":90,"epss":91,"epss_history":94,"metrics":366,"affected":376},"CVE-2024-22030","A vulnerability has been identified within Rancher that can be exploited\n in narrow circumstances through a man-in-the-middle (MITM) attack. An \nattacker would need to have control of an expired domain or execute a \nDNS spoofing/hijacking attack against the domain to exploit this \nvulnerability. The targeted domain is the one used as the Rancher URL.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-295","Improper Certificate Validation","The product does not validate, or incorrectly validates, a certificate.","weakness","Draft","Base",[19,23],{"id":20,"name":21,"techniques":22},"CAPEC-459","Creating a Rogue Certification Authority Certificate",[],{"id":24,"name":25,"techniques":26},"CAPEC-475","Signature Spoofing by Improper Validation",[],[],[29,30],"GHSA-h4h5-9833-v2p4","GO-2024-3161",[],[33,35,37],{"_key":34},"OPENSUSE-SU-2024:0350-1",{"_key":36},"SUSE-SU-2024:3911-1",{"_key":38},"OPENSUSE-SU-2024:14447-1",[],[41,42,43],{"_key":34},{"_key":36},{"_key":38},"2024-10-16T13:24:06.944Z","2024-10-16T14:25:43.445Z","Deferred",{"cisa_kev":48,"cisa_ransomware":48,"cisa_vendor":9,"epss_severity":49,"epss_score":50,"severity":51,"severity_score":52,"severity_version":53,"severity_source":54,"severity_vector":55,"severity_status":46},false,"low",0.00093,"high",8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",[57,64,69,73,78,82,86],{"url":58,"sources":59,"tags":62},"https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-22030",[54,60,61],"nvd","osv_go",[63],"WEB",{"url":65,"sources":66,"tags":67},"https://github.com/rancher/rancher/security/advisories/GHSA-h4h5-9833-v2p4",[54,60,61],[63,68],"Advisory",{"url":70,"sources":71,"tags":72},"https://nvd.nist.gov/vuln/detail/CVE-2024-22030",[61],[68],{"url":74,"sources":75,"tags":76},"https://github.com/rancher/rancher",[61],[77],"PACKAGE",{"url":79,"sources":80,"tags":81},"https://github.com/rancherlabs/support-tools/tree/master/windows-agent-strict-verify",[61],[63],{"url":83,"sources":84,"tags":85},"https://pkg.go.dev/vuln/GO-2024-3161",[61],[63],{"url":87,"sources":88,"tags":89},"https://ranchermanager.docs.rancher.com/getting-started/installation-and-upgrade/installation-references/tls-settings",[61],[63],[],{"date":92,"score":50,"percentile":93},"2026-06-04",0.25982,[95,99,102,105,108,111,114,117,120,123,126,129,132,135,138,142,145,148,151,153,156,160,163,166,169,172,175,178,181,184,187,189,192,195,197,200,203,206,209,212,215,218,222,225,228,231,234,237,240,243,246,249,252,255,258,261,264,267,270,273,276,279,282,285,288,291,294,297,300,303,306,309,312,315,318,321,324,327,330,333,336,339,342,345,348,351,354,357,360,363],{"date":96,"score":97,"percentile":98},"2025-11-04",0.00064,0.20006,{"date":100,"score":97,"percentile":101},"2025-11-05",0.2002,{"date":103,"score":97,"percentile":104},"2025-11-06",0.20022,{"date":106,"score":97,"percentile":107},"2025-11-07",0.20031,{"date":109,"score":97,"percentile":110},"2025-11-08",0.20036,{"date":112,"score":97,"percentile":113},"2025-11-09",0.20009,{"date":115,"score":97,"percentile":116},"2025-11-10",0.19966,{"date":118,"score":97,"percentile":119},"2025-11-11",0.19974,{"date":121,"score":97,"percentile":122},"2025-11-12",0.20019,{"date":124,"score":97,"percentile":125},"2025-11-13",0.2004,{"date":127,"score":97,"percentile":128},"2025-11-14",0.2003,{"date":130,"score":97,"percentile":131},"2025-11-15",0.20001,{"date":133,"score":97,"percentile":134},"2025-11-16",0.19953,{"date":136,"score":97,"percentile":137},"2025-11-17",0.19882,{"date":139,"score":140,"percentile":141},"2025-11-18",0.00208,0.39001,{"date":143,"score":140,"percentile":144},"2025-11-19",0.39011,{"date":146,"score":140,"percentile":147},"2025-11-20",0.39012,{"date":149,"score":97,"percentile":150},"2025-11-21",0.19852,{"date":152,"score":97,"percentile":150},"2025-11-22",{"date":154,"score":97,"percentile":155},"2025-11-23",0.19819,{"date":157,"score":158,"percentile":159},"2025-11-24",0.0006,0.18601,{"date":161,"score":158,"percentile":162},"2025-11-25",0.18587,{"date":164,"score":158,"percentile":165},"2025-11-26",0.18577,{"date":167,"score":158,"percentile":168},"2025-11-27",0.1858,{"date":170,"score":158,"percentile":171},"2025-11-28",0.18564,{"date":173,"score":158,"percentile":174},"2025-11-29",0.18549,{"date":176,"score":158,"percentile":177},"2025-11-30",0.18553,{"date":179,"score":158,"percentile":180},"2025-12-01",0.18594,{"date":182,"score":158,"percentile":183},"2025-12-02",0.18603,{"date":185,"score":158,"percentile":186},"2025-12-03",0.18615,{"date":188,"score":158,"percentile":165},"2025-12-04",{"date":190,"score":158,"percentile":191},"2025-12-05",0.18628,{"date":193,"score":158,"percentile":194},"2025-12-06",0.1863,{"date":196,"score":158,"percentile":186},"2025-12-07",{"date":198,"score":158,"percentile":199},"2025-12-08",0.18634,{"date":201,"score":158,"percentile":202},"2025-12-09",0.18703,{"date":204,"score":158,"percentile":205},"2025-12-10",0.18781,{"date":207,"score":158,"percentile":208},"2025-12-11",0.18822,{"date":210,"score":158,"percentile":211},"2025-12-12",0.18856,{"date":213,"score":158,"percentile":214},"2025-12-13",0.1887,{"date":216,"score":158,"percentile":217},"2025-12-14",0.18819,{"date":219,"score":220,"percentile":221},"2025-12-15",0.00068,0.21142,{"date":223,"score":220,"percentile":224},"2025-12-16",0.21168,{"date":226,"score":220,"percentile":227},"2025-12-17",0.21243,{"date":229,"score":220,"percentile":230},"2025-12-18",0.21326,{"date":232,"score":220,"percentile":233},"2025-12-19",0.21344,{"date":235,"score":220,"percentile":236},"2025-12-20",0.21321,{"date":238,"score":220,"percentile":239},"2025-12-21",0.21269,{"date":241,"score":220,"percentile":242},"2025-12-22",0.21238,{"date":244,"score":220,"percentile":245},"2025-12-23",0.21234,{"date":247,"score":220,"percentile":248},"2025-12-24",0.21254,{"date":250,"score":220,"percentile":251},"2025-12-25",0.21336,{"date":253,"score":220,"percentile":254},"2025-12-26",0.21331,{"date":256,"score":220,"percentile":257},"2025-12-27",0.2134,{"date":259,"score":220,"percentile":260},"2025-12-28",0.21298,{"date":262,"score":220,"percentile":263},"2025-12-29",0.21265,{"date":265,"score":220,"percentile":266},"2025-12-30",0.21246,{"date":268,"score":220,"percentile":269},"2025-12-31",0.2131,{"date":271,"score":220,"percentile":272},"2026-01-01",0.21399,{"date":274,"score":220,"percentile":275},"2026-01-02",0.214,{"date":277,"score":220,"percentile":278},"2026-01-03",0.21386,{"date":280,"score":220,"percentile":281},"2026-01-04",0.21288,{"date":283,"score":220,"percentile":284},"2026-01-05",0.21279,{"date":286,"score":220,"percentile":287},"2026-01-06",0.21293,{"date":289,"score":220,"percentile":290},"2026-01-07",0.21328,{"date":292,"score":220,"percentile":293},"2026-01-08",0.21379,{"date":295,"score":220,"percentile":296},"2026-01-09",0.21374,{"date":298,"score":220,"percentile":299},"2026-01-10",0.21354,{"date":301,"score":220,"percentile":302},"2026-01-11",0.21324,{"date":304,"score":220,"percentile":305},"2026-01-12",0.21289,{"date":307,"score":220,"percentile":308},"2026-01-13",0.21266,{"date":310,"score":220,"percentile":311},"2026-01-14",0.21325,{"date":313,"score":220,"percentile":314},"2026-01-15",0.2133,{"date":316,"score":220,"percentile":317},"2026-01-16",0.21359,{"date":319,"score":220,"percentile":320},"2026-01-17",0.21366,{"date":322,"score":220,"percentile":323},"2026-01-18",0.21313,{"date":325,"score":220,"percentile":326},"2026-01-19",0.21267,{"date":328,"score":220,"percentile":329},"2026-01-20",0.21245,{"date":331,"score":220,"percentile":332},"2026-01-21",0.21206,{"date":334,"score":220,"percentile":335},"2026-01-22",0.21181,{"date":337,"score":220,"percentile":338},"2026-01-23",0.21273,{"date":340,"score":220,"percentile":341},"2026-01-24",0.21294,{"date":343,"score":220,"percentile":344},"2026-01-25",0.21216,{"date":346,"score":220,"percentile":347},"2026-01-26",0.21107,{"date":349,"score":220,"percentile":350},"2026-01-27",0.21099,{"date":352,"score":220,"percentile":353},"2026-01-28",0.211,{"date":355,"score":220,"percentile":356},"2026-01-29",0.2106,{"date":358,"score":220,"percentile":359},"2026-01-30",0.21063,{"date":361,"score":220,"percentile":362},"2026-01-31",0.21067,{"date":364,"score":220,"percentile":365},"2026-02-01",0.21108,[367,372,374],{"source":54,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":368,"cvss_v4_0":9},{"baseScore":52,"baseSeverity":369,"vectorString":55,"impactScore":370,"exploitabilityScore":371},"HIGH",10,3.3,{"source":60,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":373,"cvss_v4_0":9},{"baseScore":52,"baseSeverity":369,"vectorString":55,"impactScore":370,"exploitabilityScore":371},{"source":61,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":375,"cvss_v4_0":9},{"baseScore":52,"baseSeverity":9,"vectorString":55,"impactScore":370,"exploitabilityScore":371},[377,402],{"ecosystem":378,"name":379,"vendor":380,"product":381,"cpe_part":9,"purl_type":382,"purl_namespace":380,"purl_name":381,"source":9,"versions":383},"Go","github.com/rancher/rancher","github.com/rancher","rancher","golang",[384,392,396,400],{"version":385,"is_range":386,"range_type":387,"version_start":388,"version_start_type":389,"version_end":390,"version_end_type":391,"fixed_in":9},"gte2_7_0_lt2_7_15",true,"semver","2.7.0","including","2.7.15","excluding",{"version":393,"is_range":386,"range_type":387,"version_start":394,"version_start_type":389,"version_end":395,"version_end_type":391,"fixed_in":9},"gte2_8_0_lt2_8_8","2.8.0","2.8.8",{"version":397,"is_range":386,"range_type":387,"version_start":398,"version_start_type":389,"version_end":399,"version_end_type":391,"fixed_in":9},"gte2_9_0_lt2_9_2","2.9.0","2.9.2",{"version":401,"is_range":386,"range_type":387,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"all",{"ecosystem":9,"name":381,"vendor":403,"product":381,"cpe_part":404,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":405},"suse","a",[406,408,410],{"version":407,"is_range":386,"range_type":54,"version_start":388,"version_start_type":389,"version_end":390,"version_end_type":391,"fixed_in":9},">= 2.7.0, \u003C 2.7.15",{"version":409,"is_range":386,"range_type":54,"version_start":394,"version_start_type":389,"version_end":395,"version_end_type":391,"fixed_in":9},">= 2.8.0, \u003C 2.8.8",{"version":411,"is_range":386,"range_type":54,"version_start":398,"version_start_type":389,"version_end":399,"version_end_type":391,"fixed_in":9},">= 2.9.0, \u003C 2.9.2"]