CVE-2025-23388

CWE-121Stack-based Buffer Overflow5 documents4 sources
Severity
8.2HIGH
EPSS
0.7%
top 27.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Suse RancherGithub.com Rancher/rancher
Timeline
PublishedApr 11

Description

A Stack-based Buffer Overflow vulnerability in SUSE rancher allows for denial of service.This issue affects rancher: from 2.8.0 before 2.8.13, from 2.9.0 before 2.9.7, from 2.10.0 before 2.10.3.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:HExploitability: 3.9 | Impact: 4.2

Affected Packages2 packages

CVEListV5suse/rancher2.8.02.8.13+2
Gogithub.com/rancher/rancher2.8.02.8.13+2

🔴Vulnerability Details

4
CVEList
Unauthenticated stack overflow in /v3-public/authproviders API2025-04-11
OSV
Rancher allows an unauthenticated stack overflow in /v3-public/authproviders API in github.com/rancher/rancher2025-03-03
OSV
Rancher allows an unauthenticated stack overflow in /v3-public/authproviders API2025-02-27
GHSA
Rancher allows an unauthenticated stack overflow in /v3-public/authproviders API2025-02-27
CVE-2025-23388 (HIGH CVSS 8.2) | A Stack-based Buffer Overflow vulne | cvebase.io