Site icon API Security Blog

Sensitive Information Disclosure

github.com/rancher/rancher is vulnerable to Sensitive Information Disclosure. This vulnerability arises due to the exposure of various sensitive data, including HTTP headers, credentials, and API Server calls, leaked into Rancher's audit logs when AUDIT_LEVEL is set to 1 or above. An attacker can gain access to sensitive information if they gain access to the logs….Read More

Exit mobile version