Rancher Desktop Vulnerability: Local Network Attackers Exploit Resource Exposure to Dashboard API

Rancher Desktop Vulnerability: Local Network Attackers Exploit Resource Exposure to Dashboard API

CVE-2022-21947 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A Exposure of Resource to Wrong Sphere vulnerability in Rancher Desktop of SUSE allows attackers in the local network to connect to the Dashboard API (steve) to carry out arbitrary actions. This issue affects: SUSE Rancher Desktop versions prior to V.

Learn more about our Cis Benchmark Audit For Desktop Software.