{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/62125?format=json","vulnerability_id":"VCID-64sm-pgbb-2ufh","summary":"A vulnerability has been identified in which an RKE1 cluster keeps \nconstantly reconciling when secrets encryption configuration is enabled.\n When reconciling, the Kube API secret values are written in plaintext \non the AppliedSpec. Cluster owners, Cluster members, and Project members\n (for projects within the cluster), all have RBAC permissions to view \nthe cluster object from the apiserver.","aliases":[{"alias":"CVE-2024-22032"}],"fixed_packages":[],"affected_packages":[],"references":[{"reference_url":"https://github.com/rancher/rancher/security/advisories/GHSA-q6c7-56cq-g2wm","reference_id":"GHSA-q6c7-56cq-g2wm","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-16T14:17:33Z/"}],"url":"https://github.com/rancher/rancher/security/advisories/GHSA-q6c7-56cq-g2wm"},{"reference_url":"https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-22032","reference_id":"show_bug.cgi?id=CVE-2024-22032","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-16T14:17:33Z/"}],"url":"https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-22032"}],"weaknesses":[{"cwe_id":200,"name":"Exposure of Sensitive Information to an Unauthorized Actor","description":"The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information."}],"exploits":[],"severity_range_score":"6.5 - 7.1","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-64sm-pgbb-2ufh"}