{"vulnerability": "cve-2021-25320", "sightings": [{"uuid": "f042940f-172c-4310-a395-52dc9b65191d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-25320", "type": "seen", "source": "https://t.me/cibsecurity/26175", "content": "\u203c CVE-2021-25320 \u203c\n\nA Improper Access Control vulnerability in Rancher, allows users in the cluster to make request to cloud providers by creating requests with the cloud-credential ID. Rancher in this case would attach the requested credentials without further checks This issue affects: Rancher versions prior to 2.5.9; Rancher versions prior to 2.4.16.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-15T12:25:36.000000Z"}, {"uuid": "b1bcffd5-6e3a-4f66-98e4-1ecb09312c37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-25320", "type": "seen", "source": "https://gist.github.com/alon710/05cfd963735168b19b3a62bd1e9ce607", "content": "", "creation_timestamp": "2026-03-03T16:40:05.000000Z"}]}