Severity by source
Sources disagree (Medium–Critical)CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Network-reachable import endpoint with no auth (AV:N/PR:N), low complexity, requires an operator to import the poisoned YAML (UI:R), and escapes the agent container into the managed cluster (S:C, C/I/A:H).
vuln.today treats the vendor’s rating as authoritative. A higher third-party CVSS (e.g. CISA-ADP) is shown for transparency but does not drive the headline severity.
CVSS VectorVendor: suse
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
2DescriptionCVE.org
A command injection vulnerability in the Rancher Manager cluster before 2.14.2 import endpoint /v3/import/{token}_{clusterId}.yaml through unsanitized YAML parameters could allow remote attackers to break out of an image, and execute e.g. malicious containers.
AnalysisAI
{token}_{clusterId}.yaml. CVSS 4.0 rates this 9.4 (Critical) with a scope-changing impact on subsequent systems, but no public exploit was identified at time of analysis and it is not listed in CISA KEV. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires reaching the Rancher Manager /v3/import/{token}_{clusterId}.yaml endpoint over the network and supplying attacker-influenced YAML parameters; per CVSS PR:N no Rancher authentication is needed, but UI:P means a legitimate operator (or automation) must passively act on the poisoned import - typically by applying or fetching the manifest during a normal cluster registration flow. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The supplied CVSS 4.0 vector (AV:N/AC:L/AT:N/PR:N/UI:P) combined with High vulnerable- and subsequent-system impact (VC/VI/VA and SC/SI/SA all H) reflects a network-reachable, unauthenticated injection whose blast radius extends from Rancher into the managed clusters - a realistic worst case for a multi-cluster control plane. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | A remote attacker crafts a malicious cluster-import URL or YAML payload that smuggles directives through the YAML parameters of /v3/import/{token}_{clusterId}.yaml; when a Rancher operator (or an automated pipeline) imports or fetches the poisoned manifest, the injected code executes in the cluster agent context, escapes the agent image, and deploys attacker-controlled containers into the target cluster. No public exploit identified at time of analysis, but the attack flow is straightforward given the network attack vector and low complexity. |
| Remediation | Upgrade Rancher Manager to version 2.14.2 or later, which is the vendor-released patch referenced by GHSA-mhc6-2gfq-xx62 (https://github.com/rancher/rancher/security/advisories/GHSA-mhc6-2gfq-xx62). … Detailed patch versions, workarounds, and compensating controls in full report. |
Recommended ActionAI
24 hours: Conduct immediate inventory of SUSE components using asset discovery tools and assess network exposure of affected systems. …
Sign in for detailed remediation steps and compensating controls.
Threat intelligence, references, and detailed analysis are available after sign-in.
SAML assertion replay in Rancher's Assertion Consumer Service (ACS) handler lets a person-in-the-middle who captures a v
Privilege escalation in SUSE Rancher (Kubernetes management platform) allows a user holding the Project Owner role to im
Privilege escalation in Rancher 2.13 (before 2.13.6) and 2.14 (before 2.14.2) lets any authenticated user gain principal
A vulnerability has been identified within Rancher Manager, where using self-signed CA certificates and passing the -ski
Authentication bypass in SUSE Rancher's in-cluster admission webhook (rancher-webhook) lets a network-adjacent, unauthen
Privilege persistence in SUSE Rancher allows project users to retain Pod Security Admission (PSA) permissions even after
Path traversal in Rancher Fleet's ImageScan subsystem (CWE-23) allows authenticated remote attackers to escape intended
Same weakness CWE-95 – Eval Injection
View allSame technique Command Injection
View allVendor StatusVendor
SUSE
Severity: ModerateShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-38009
GHSA-mhc6-2gfq-xx62