CVE-2021-36778
published 2022-05-02CVE-2021-36778: A Incorrect Authorization vulnerability in SUSE Rancher allows administrators of third-party repositories to gather credentials that are sent to their servers…
PriorityP344high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EPSS
0.71%
48.7th percentile
A Incorrect Authorization vulnerability in SUSE Rancher allows administrators of third-party repositories to gather credentials that are sent to their servers. This issue affects: SUSE Rancher Rancher versions prior to 2.5.12; Rancher versions prior to 2.6.3.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | rancher_rancher | >= 2.5.0 < 2.5.12 | 2.5.12 |
| github.com | rancher_rancher | >= 2.6.0 < 2.6.3 | 2.6.3 |
| suse | rancher | < 2.5.12 | 2.5.12 |
| suse | rancher | >= 2.6.0 < 2.6.3 | 2.6.3 |
| suse | rancher | >= Rancher < 2.5.12 | 2.5.12 |
| suse | rancher | >= Rancher < 2.6.3 | 2.6.3 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Exposure of repository credentials to external third-party sources in Rancher
osv·2022-05-02
CVE-2021-36778 [HIGH] Exposure of repository credentials to external third-party sources in Rancher
Exposure of repository credentials to external third-party sources in Rancher
### Impact
This issue only happens when the user configures access credentials to a private repository in Rancher inside `Apps & Marketplace > Repositories`. It affects Rancher versions 2.5.0 up to and including 2.5.11 and from 2.6.0 up to and including 2.6.2.
An insufficient check of the same-origin policy when downloading Helm charts from a configured private repository can lead to exposure of the repository credentials to a third-party provider. This exposure happens when the private repository:
1. Does an HTTP redirect to a third-party repository or external storage provider.
2. Downloads an icon resource for the chart hosted on a third-party provider.
The address of the private repository is not leaked,
GHSA
Exposure of repository credentials to external third-party sources in Rancher
ghsa·2022-05-02
CVE-2021-36778 [HIGH] CWE-200 Exposure of repository credentials to external third-party sources in Rancher
Exposure of repository credentials to external third-party sources in Rancher
### Impact
This issue only happens when the user configures access credentials to a private repository in Rancher inside `Apps & Marketplace > Repositories`. It affects Rancher versions 2.5.0 up to and including 2.5.11 and from 2.6.0 up to and including 2.6.2.
An insufficient check of the same-origin policy when downloading Helm charts from a configured private repository can lead to exposure of the repository credentials to a third-party provider. This exposure happens when the private repository:
1. Does an HTTP redirect to a third-party repository or external storage provider.
2. Downloads an icon resource for the chart hosted on a third-party provider.
The address of the private repository is not leaked,
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-05-02
Published