CVE-2025-67601

Name of the Vulnerable Software and Affected Versions Rancher versions prior to 2.13.2 Rancher versions 2.10.0 through 2.10.11 Rancher versions 2.11.0 through 2.11.10 Rancher versions 2.12.0 through 2.12.6

Description A security issue exists in Rancher Manager related to the Rancher CLI login command. When using self-signed CA certificates and the -skip-verify flag without the –cacert flag, the CLI attempts to retrieve CA certificates from Rancher’s settings. This can allow an attacker with network access to interfere with the TLS handshake and potentially bypass TLS security controls. Attackers may also be able to view basic authentication headers in a Man-in-the-Middle attack due to the lack of TLS enforcement. The issue is addressed by requiring explicit CA certificate passing with the –cacert flag when needed.

Recommendations Rancher versions prior to 2.13.2 should be upgraded to version 2.13.2 or later. Rancher versions 2.10.0 through 2.10.11 should be upgraded to version 2.10.11 or later. Rancher versions 2.11.0 through 2.11.10 should be upgraded to version 2.11.10 or later. Rancher versions 2.12.0 through 2.12.6 should be upgraded to version 2.12.6 or later. If upgrading is not immediately possible, always explicitly pass CA certificates with the –cacert flag when using the login command, especially when using self-signed certificates.