{"vulnerability": "cve-2025-23391", "sightings": [{"uuid": "d4a2ab2b-e866-409b-a9fd-26c2ebaedde3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23391", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3llwphjov7c2o", "content": "", "creation_timestamp": "2025-04-03T20:10:05.436163Z"}, {"uuid": "db16d327-d3d0-4102-bd92-0e93b2a3388f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23391", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmjwksxzzs2f", "content": "", "creation_timestamp": "2025-04-11T11:37:52.741390Z"}, {"uuid": "d5b2f48a-2c61-48ee-bdb0-17f46a23764b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23391", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114319534961696220", "content": "", "creation_timestamp": "2025-04-11T13:21:10.709912Z"}, {"uuid": "233348ce-56ff-425d-a5ae-695ec275b27e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23391", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3llva3f5gb62r", "content": "", "creation_timestamp": "2025-04-03T06:02:11.506060Z"}, {"uuid": "55030ded-95af-4ab1-ba59-ac3dbd2225bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23391", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3llvh7l6j2c2s", "content": "", "creation_timestamp": "2025-04-03T08:09:50.207929Z"}, {"uuid": "117b47d7-ee46-48fc-a56b-042353bce0d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23391", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114319644596450744", "content": "", "creation_timestamp": "2025-04-11T13:49:03.383389Z"}, {"uuid": "96c98db8-22bc-4dee-aca0-7619e35ca971", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23391", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11412", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23391\n\ud83d\udd25 CVSS Score: 9.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: A Incorrect Privilege Assignment vulnerability in SUSE rancher allows a Restricted Administrator to change the password of Administrators and take over their accounts.\nThis issue affects rancher: from 2.8.0 before 2.8.14, from 2.9.0 before 2.9.8, from 2.10.0 before 2.10.4.\n\ud83d\udccf Published: 2025-04-11T10:38:43.642Z\n\ud83d\udccf Modified: 2025-04-11T10:38:43.642Z\n\ud83d\udd17 References:\n1. https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-23391\n2. https://github.com/rancher/rancher/security/advisories/GHSA-8p83-cpfg-fj3g", "creation_timestamp": "2025-04-11T10:50:12.000000Z"}, {"uuid": "1e4013b5-c1f3-4d8a-b405-d386ec3274f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23391", "type": "seen", "source": "https://t.me/cvedetector/22728", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23391 - SUSE Rancher Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23391 \nPublished : April 11, 2025, 11:15 a.m. | 18\u00a0minutes ago \nDescription : A Incorrect Privilege Assignment vulnerability in SUSE rancher allows a Restricted Administrator to change the password of Administrators and take over their accounts.  \nThis issue affects rancher: from 2.8.0 before 2.8.14, from 2.9.0 before 2.9.8, from 2.10.0 before 2.10.4. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-11T13:56:34.000000Z"}]}