Podatność CVE-2023-32196

Podatność CVE-2023-32196

Publikacja: 2024-10-16

Opis:

A vulnerability has been identified whereby privilege escalation checks are not properly enforced for RoleTemplateobjects when external=true, which in specific scenarios can lead to privilege escalation.

Typ:

CWE-269

(Improper Privilege Management)

Referencje:

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-32196

https://github.com/rancher/rancher/security/advisories/GHSA-64jq-m7rq-768h

Copyright 2024, cxsecurity.com