Base Score

HIGH8

CVE-2024-58267

A vulnerability has been identified within Rancher Manager whereby the SAML authentication from the Rancher CLI tool is vulnerable to phishing attacks. The custom authentication protocol for SAML-based providers can be abused to steal Rancher’s authentication tokens.

VectorNETWORK

Published Bymeissner@suse.de

Published DateOct 02, 2025, 12:15

Affected Versions(4)

github.com/rancher/rancher(Go)

Introduced2.12.0

Fixed2.12.2

LimitN/A

github.com/rancher/rancher(Go)

Introduced2.11.0

Fixed2.11.6

LimitN/A

github.com/rancher/rancher(Go)

Introduced2.10.0

Fixed2.10.10

LimitN/A

github.com/rancher/rancher(Go)

Introduced2.9.0

Fixed2.9.12

LimitN/A

Package (Ecosystem)	Introduced	Fixed	Limit
github.com/rancher/rancher(Go)	2.12.0	2.12.2	N/A
github.com/rancher/rancher(Go)	2.11.0	2.11.6	N/A
github.com/rancher/rancher(Go)	2.10.0	2.10.10	N/A
github.com/rancher/rancher(Go)	2.9.0	2.9.12	N/A

Weakness Type (CWE):CWE-345

CVSS Metrics

Base Score

Vector String

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H

Base Severity

HIGH

Version

3.1

Attack Vector (AV)

NETWORK

Attack Complexity (AC)

HIGH

Privileges Required (PR)

LOW

User Interaction (UI)

REQUIRED

Scope (S)

CHANGED

Confidentiality (C)

HIGH

Integrity (I)

HIGH

Availability (A)

HIGH

References

Base Score

HIGH8

Weakness Type (CWE):CWE-345

CVSS Metrics

Base Score

Vector String

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H

Base Severity

HIGH

Version

3.1

Attack Vector (AV)

NETWORK

Attack Complexity (AC)

HIGH

Privileges Required (PR)

LOW

User Interaction (UI)

REQUIRED

Scope (S)

CHANGED

Confidentiality (C)

HIGH

Integrity (I)

HIGH

Availability (A)

HIGH