CVE-2025-23391

Name of the Vulnerable Software and Affected Versions Rancher versions prior to v2.8.14 Rancher versions prior to v2.9.8 Rancher versions prior to v2.10.4 Rancher versions prior to v2.11.0

Description A vulnerability has been identified in Rancher where a Restricted Administrator can change the password of Administrators and take over their accounts. This issue arises because a Restricted Administrator should not be allowed to change the password of more privileged users unless they have the Manage Users permissions. The vulnerability can be exploited by abusing elevation control mechanisms, as described in the MITRE ATT&CK Technique T1548.

Recommendations For versions prior to v2.8.14, upgrade to v2.8.14 or later. For versions prior to v2.9.8, upgrade to v2.9.8 or later. For versions prior to v2.10.4, upgrade to v2.10.4 or later. For versions prior to v2.11.0, upgrade to v2.11.0 or later. As a temporary workaround, limit access to Rancher Restricted Admin only to trusted users. Downgrade Restricted Administrators to custom roles with limited permissions.