Bug 1219982 (CVE-2024-22030) - CVE-2024-22030: Rancher and Fleet agents can be hijacked by taking over the Rancher Server URL
Summary: CVE-2024-22030: Rancher and Fleet agents can be hijacked by taking over the R...
Status: RESOLVED FIXED
Alias: CVE-2024-22030
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P5 - None : Critical
Target Milestone: ---
Assignee: Security Team bot
QA Contact: Security Team bot
URL: https://github.com/rancherlabs/embarg...
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2024-02-15 18:38 UTC by Pietro Dell'Amore
Modified: 2024-07-05 15:18 UTC (History)
5 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Marcus Meissner 2024-02-16 08:04:08 UTC 
CVE-2024-22030
Comment 2 Marcus Meissner 2024-02-16 16:23:24 UTC 
blog post is public
https://www.suse.com/c/rancher-security-update/
Comment 3 Thomas Leroy 2024-07-05 15:18:56 UTC 
All done, closing.