cbcvebase.
CVE-2024-58267
published 2025-10-02

CVE-2024-58267: A vulnerability has been identified within Rancher Manager whereby the SAML authentication from the Rancher CLI tool is vulnerable to phishing attacks. The…

PriorityP348high8CVSS 3.1
AVNACHPRLUIRSCCHIHAH
EPSS
0.22%
12.1th percentile
A vulnerability has been identified within Rancher Manager whereby the SAML authentication from the Rancher CLI tool is vulnerable to phishing attacks. The custom authentication protocol for SAML-based providers can be abused to steal Rancher’s authentication tokens.

Affected

8 ranges
VendorProductVersion rangeFixed in
github.comrancher_rancher>= 2.10.0 < 2.10.102.10.10
github.comrancher_rancher>= 2.11.0 < 2.11.62.11.6
github.comrancher_rancher>= 2.12.0 < 2.12.22.12.2
github.comrancher_rancher>= 2.9.0 < 2.9.122.9.12
suserancher>= 2.10.0 < 2.10.102.10.10
suserancher>= 2.11.0 < 2.11.62.11.6
suserancher>= 2.12.0 < 2.12.22.12.2
suserancher>= 2.9.0 < 2.9.122.9.12
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.