VDB
CVE-2024-52284
CVE-2024-52284
PUBLISHED
CVSS 7.699999809265137 HIGH
Rancher Fleet Helm Values are stored inside BundleDeployment in plain text
EPSS 0.04% · 13.3th percentile
Risk Scores
CVSS 3.1
7.699999809265137
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
EPSS Score
0.04%
13.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | Rancher | 0.13.0, 0.12.0, 0.11.0 |
| github.com | rancher/fleet | 0.13.0, 0.12.0, 0.11.0 |
Exploit Intelligence
- CIRCL seen: CVE-2024-52284 (circl-sighting)
- CIRCL seen: CVE-2024-52284 (circl-sighting)
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-52284 (circl)
- https://github.com/advisories/GHSA-6h9x-9j5v-7w9h (circl)
Timeline
- Aug 29, 2025 CVE Published
- Sep 1, 2025 PoC Published
- Sep 1, 2025 PoC Published
- Sep 2, 2025 EPSS Score
- Sep 2, 2025 Coalition ESS Score
- Sep 10, 2025 EPSS Score
- Sep 17, 2025 EPSS Score
- Sep 25, 2025 EPSS Score
- Oct 2, 2025 EPSS Score
- Oct 4, 2025 Coalition ESS Score
- Oct 6, 2025 Coalition ESS Score
- Oct 10, 2025 EPSS Score
References
- https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-52284 url
- https://github.com/advisories/GHSA-6h9x-9j5v-7w9h url
- https://github.com/rancher/fleet/security/advisories/GHSA-6h9x-9j5v-7w9h url
- https://github.com/rancher/fleet/commit/088bcbea7edb844d7e6fc3649d9954f763cf68a9 url
- https://github.com/rancher/fleet package