Sensitive Data Exposure in Rancher Manager Affects Users
CVE-2024-58269

4.3MEDIUM

Key Information:

Vendor: Suse
Status: Rancher
Vendor: CVE Published:; 29 October 2025

What is CVE-2024-58269?

A vulnerability in Rancher Manager has been discovered that allows sensitive information, such as secret data, cluster import URLs, and registration tokens, to be exposed to any entity with access to Rancher audit logs. This could lead to unauthorized access to critical system components, raising significant security concerns for users and organizations relying on Rancher Manager for container management. Users are advised to review their audit log settings and apply necessary mitigations to protect against potential data exposure.

Affected Version(s)

rancher 0 < 0.0.0-20251013203444-50dc516a19ea

References

https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-58269

https://github.com/rancher/rancher/security/advisories/GH...

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 29, 2025
Vulnerability Reserved
Oct 8, 2025

JSON

Suse

What is CVE-2024-58269?

Affected Version(s)

References

CVSS V3.1

Timeline