CVE-2024-52281
published 2025-04-16CVE-2024-52281: A: Improper Neutralization of Input During Web Page Generation vulnerability in SUSE rancher allows a malicious actor to perform a Stored XSS attack through…
PriorityP341high8.9CVSS 3.1
AVNACLPRLUIRSCCHIHAL
EPSS
0.48%
37.6th percentile
A: Improper Neutralization of Input During Web Page Generation vulnerability in SUSE rancher allows a malicious actor to perform a Stored XSS attack through the cluster description field.
This issue affects rancher: from 2.9.0 before 2.9.4.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | rancher_rancher | >= 2.9.0 < 2.9.4 | 2.9.4 |
| suse | rancher | >= 2.9.0 < 2.9.4 | 2.9.4 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Rancher UI has Stored Cross-site Scripting vulnerability in github.com/rancher/rancher
osv·2025-01-15
CVE-2024-52281 Rancher UI has Stored Cross-site Scripting vulnerability in github.com/rancher/rancher
Rancher UI has Stored Cross-site Scripting vulnerability in github.com/rancher/rancher
Rancher UI has Stored Cross-site Scripting vulnerability in github.com/rancher/rancher.
NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions.
(If this is causing false-positive reports from vulnerability scanners, please suggest an edit to the report.)
The additional affected modules and versions are: github.com/rancher/rancher from v2.9.0 before v2.9.4.
OSV
Rancher UI has Stored Cross-site Scripting vulnerability
osv·2025-01-14
CVE-2024-52281 [HIGH] Rancher UI has Stored Cross-site Scripting vulnerability
Rancher UI has Stored Cross-site Scripting vulnerability
### Impact
A vulnerability has been identified within Rancher UI that allows a malicious actor to perform a Stored XSS attack through the cluster description field.
Please consult the associated [MITRE ATT&CK - Technique - Drive-by Compromise](https://attack.mitre.org/techniques/T1189/) for further information about this category of attack.
### Patches
The fix introduces new changes in the directives responsible for sanitizing HTML code before rendering.
We replaced the `v-tooltip` directive with the `v-clean-tooltip` directive.
Patched versions include releases `2.9.4` and `2.10.0`.
### Workarounds
There are no workarounds for this issue. Users are recommended to upgrade, as soon as possible, to a version of /Rancher Manager w
GHSA
Rancher UI has Stored Cross-site Scripting vulnerability
ghsa·2025-01-14
CVE-2024-52281 [HIGH] CWE-79 Rancher UI has Stored Cross-site Scripting vulnerability
Rancher UI has Stored Cross-site Scripting vulnerability
### Impact
A vulnerability has been identified within Rancher UI that allows a malicious actor to perform a Stored XSS attack through the cluster description field.
Please consult the associated [MITRE ATT&CK - Technique - Drive-by Compromise](https://attack.mitre.org/techniques/T1189/) for further information about this category of attack.
### Patches
The fix introduces new changes in the directives responsible for sanitizing HTML code before rendering.
We replaced the `v-tooltip` directive with the `v-clean-tooltip` directive.
Patched versions include releases `2.9.4` and `2.10.0`.
### Workarounds
There are no workarounds for this issue. Users are recommended to upgrade, as soon as possible, to a version of /Rancher Manager w
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-04-16
Published