CVE-2022-31247
published 2022-09-07CVE-2022-31247: An Improper Authorization vulnerability in SUSE Rancher, allows any user who has permissions to create/edit cluster role template bindings or project role…
PriorityP345critical9.1CVSS 3.1
AVNACLPRHUINSCCHIHAH
EPSS
0.81%
52.4th percentile
An Improper Authorization vulnerability in SUSE Rancher, allows any user who has permissions to create/edit cluster role template bindings or project role template bindings (such as cluster-owner, manage cluster members, project-owner and manage project members) to gain owner permission in another project in the same cluster or in another project on a different downstream cluster. This issue affects: SUSE Rancher Rancher versions prior to 2.6.7; Rancher versions prior to 2.5.16.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | rancher_rancher | >= 2.5.0 < 2.5.16 | 2.5.16 |
| github.com | rancher_rancher | >= 2.6.0 < 2.6.7 | 2.6.7 |
| suse | rancher | >= 2.5.0 < 2.5.16 | 2.5.16 |
| suse | rancher | >= 2.6.0 < 2.6.7 | 2.6.7 |
| suse | rancher | >= Rancher < 2.6.7 | 2.6.7 |
| suse | rancher | >= Rancher < 2.5.16 | 2.5.16 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Rancher has downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB)
ghsa·2026-03-03
CVE-2022-31247 [CRITICAL] CWE-285 Rancher has downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB)
Rancher has downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB)
### Impact
An issue was discovered in Rancher versions up to and including 2.5.15 and 2.6.6 where a flaw with authorization logic allows privilege escalation through cluster role template binding (CRTB) and project role template binding (PRTB). This issue does not affect the local cluster, it affects only downstream clusters.
The vulnerability can be exploited by any user who has permissions to create/edit cluster role template bindings or project role template bindings (such as `cluster-owner`, `manage cluster members`, `project-owner` and `manage project members`) to gain `owner` permission in another project in the same cluster or in another project on a different downstr
OSV
Rancher has downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB)
osv·2026-03-03
CVE-2022-31247 [CRITICAL] Rancher has downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB)
Rancher has downstream cluster privilege escalation through cluster and project role template binding (CRTB/PRTB)
### Impact
An issue was discovered in Rancher versions up to and including 2.5.15 and 2.6.6 where a flaw with authorization logic allows privilege escalation through cluster role template binding (CRTB) and project role template binding (PRTB). This issue does not affect the local cluster, it affects only downstream clusters.
The vulnerability can be exploited by any user who has permissions to create/edit cluster role template bindings or project role template bindings (such as `cluster-owner`, `manage cluster members`, `project-owner` and `manage project members`) to gain `owner` permission in another project in the same cluster or in another project on a different downstr
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-09-07
Published