CVE-2023-22651

Name of the Vulnerable Software and Affected Versions SUSE Rancher versions 2.6.x through 2.7.x

Description The issue is related to improper privilege management in SUSE Rancher, allowing privilege escalation. A failure in the update logic of Rancher's admission Webhook may lead to the misconfiguration of the Webhook, which enforces validation rules and security checks before resources are admitted into the Kubernetes cluster.

Recommendations For SUSE Rancher versions 2.6.x through 2.7.x, consider disabling the admission Webhook as a temporary workaround until a patch is available. Restrict access to the Webhook component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.