CVE-2023-22649

high-risk

Published 2024-10-16

A vulnerability has been identified which may lead to sensitive data being leaked into Rancher's audit logs. [Rancher Audit Logging](https://ranchermanager.docs.rancher.com/how-to-guides/advanced-user-guides/enable-api-audit-log) is an opt-in feature, only deployments that have it enabled and have [AUDIT_LEVEL](https://ranchermanager.docs.rancher.com/how-to-guides/advanced-user-guides/enable-api-audit-log#audit-log-levels) set to `1 or above` are impacted by this issue.

Do I need to act?

45.2% chance of exploitation in next 30 days

EPSS score — higher than 55% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.4/10 High

NETWORK / LOW complexity

Affected Products (2)

Rancher

Affected Vendors

Suse

References (2)

Issue Tracking https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-22649

Mitigation https://github.com/rancher/rancher/security/advisories/GHSA-xfj7-qf8w-2gcr

/ 100

high-risk

Severity 29/34 · Critical

Exploitability 17/34 · Moderate

Exposure 7/34 · Low