CVE-2025-62879

Aliases:GHSA-wj3p-5h3x-c74qGO-2026-4591
Advisory lineage Upstream: 0 Downstream: 1
Analyzed
Published: 04 Mar 2026, 15:08
Last modified:04 Mar 2026, 16:11

Vulnerability Summary

Overall Risk (default)
medium
27/100
CVSS Score
6.8 MEDIUM
v3.1 (cve.org)
EPSS Score
0.01% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

04 Mar 2026, 15:08
Published
Vulnerability first disclosed
04 Mar 2026, 16:11
Last Modified
Vulnerability information updated

Description

A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens (both accessKey and secretKey) into the rancher-backup-operator pod's logs.

CVSS Metrics

  • v3.1MEDIUMScore: 6.8CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
  • v3.1MEDIUMScore: 4.9CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

EPSS Trends

Current EPSS score: 0.01% Percentile: 3%

Techniques & Countermeasures

  • CWE-532Insertion of Sensitive Information into Log File

    The product writes sensitive information to a log file.

Affected Systems

  • github.com/rancherbackup-restore-operator

    ≥ 9.0.0, < 9.0.1 | ≥ 8.0.0, < 8.1.2 | ≥ 7.0.0, < 7.0.5 | ≥ 6.0.0, < 6.0.3 | all

  • suserancher

    ≥ 9.0.0, < 9.0.1 | ≥ 8.0.0, < 8.1.2 | ≥ 7.0.0, < 7.0.5 | ≥ 6.0.0, < 6.0.3

  • suserancher_backup_and_restore_operator

    ≥ 6.0.0, < 6.0.3 | ≥ 7.0.0, < 7.0.5 | ≥ 8.0.0, < 8.1.2 | ≥ 9.0.0, < 9.0.1

References (5)