GHSA-x7xj-jvwp-97rv: RKE2 allows privilege escalation in Windows nodes due to Insecure Access Control Lists

October 25, 2024

A vulnerability has been identified whereby RKE2 deployments in Windows nodes have weak Access Control Lists (ACL), allowing BUILTIN\Users or NT AUTHORITY\Authenticated Users to view or edit sensitive files which could lead to privilege escalation. This vulnerability is exclusive to RKE2 in Windows environments. Linux environments are not affected by it. Please consult the associated MITRE ATT&CK - Technique - Exploitation for Privilege Escalation for further information about this category of attack.

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32197
github.com/advisories/GHSA-x7xj-jvwp-97rv
github.com/rancher/rancher/security/advisories/GHSA-7h8m-pvw3-5gh4
github.com/rancher/rke2
github.com/rancher/rke2/security/advisories/GHSA-x7xj-jvwp-97rv

Code Behaviors & Features

Detect and mitigate GHSA-x7xj-jvwp-97rv with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →