A Insufficient Entropy vulnerability in SUSE Rancher allows attackers that gained knowledge of the cattle-token to continue abusing this even after the token was renewed. This issue affects: SUSE Rancher Rancher versions prior to 2.6.10; Rancher versions prior to 2.7.1.
References
Link | Resource |
---|---|
https://bugzilla.suse.com/show_bug.cgi?id=1205297 | Issue Tracking Patch |
Configurations
Configuration 1 (hide)
|
Information
Published : 2023-02-07 05:15
Updated : 2023-02-16 14:23
NVD link : CVE-2022-43755
Mitre link : CVE-2022-43755
JSON object : View
CWE
CWE-331
Insufficient Entropy
Products Affected
suse
- rancher