Vulnerability Database

308,926

Total vulnerabilities in the database

CVE-2018-20321

An issue was discovered in Rancher 2 through 2.1.5. Any project member with access to the default namespace can mount the netes-default service account in a pod, and then use that pod to execute administrative privileged commands against the k8s cluster. This could be mitigated by isolating the default namespace in a separate project, where only cluster admins can be given permissions to access. As of 2018-12-20, this bug affected ALL clusters created or imported by Rancher.

Published: Apr 10, 2019
Updated: Nov 9, 2025
CVE: CVE-2018-20321
GHSA: GHSA-9qq2-xhmc-h9qr
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9
AV:N/AC:L/Au:S/C:C/I:C/A:C

CWEs:

Affected Software
References

Software	From	Fixed in
suse / rancher	2.0.0	2.1.5.x
github.com/rancher/rancher	2.0.0	2.1.6

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo