Fixed an issue where changing a user's permissions in Azure AD wasn't reflected for users while they were logged in to the Rancher UI.For more information, see CVE-2023-22647. Fixed an issue that enabled Standard users or above to elevate their permissions to Administrator in the local cluster.For more information, see CVE-2022-43760. This would allow an attacker to steal sensitive information, manipulate web content, or perform other malicious activities on behalf of the victim. Fixed an issue where cross-site scripting (XSS) could allow a malicious user to inject code executed within another user's browser. For more information, see CVE-2020-10676.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |