Vulnerability CVE-2024-22030


Published: 2024-10-16

Description:
A vulnerability has been identified within Rancher that can be exploited
in narrow circumstances through a man-in-the-middle (MITM) attack. An
attacker would need to have control of an expired domain or execute a
DNS spoofing/hijacking attack against the domain to exploit this
vulnerability. The targeted domain is the one used as the Rancher URL.

Type:

CWE-295

(Certificate Issues)

 References:
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-22030
https://github.com/rancher/rancher/security/advisories/GHSA-h4h5-9833-v2p4

Copyright 2024, cxsecurity.com

 

Back to Top