CVE-2025-62879 - Vulnerability Details - OpenCVE

A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens (both accessKey and secretKey) into the rancher-backup-operator pod's logs.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Exploitation none

Automatable no

Technical Impact partial

No data.

No data.

No data.

No data.

Advisories

Source	ID	Title
Github GHSA	GHSA-wj3p-5h3x-c74q	Rancher Backup Operator pod's logs leak S3 tokens

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-62879
https://github.com/advisories/GHSA-wj3p-5h3x-c74q

History

Wed, 04 Mar 2026 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 04 Mar 2026 15:30:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens (both accessKey and secretKey) into the rancher-backup-operator pod's logs.
Title		Rancher Backup Operator pod's logs leak S3 tokens
Weaknesses		CWE-532
References		https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-62879 https://github.com/advisories/GHSA-wj3p-5h3x-c74q
Metrics		cvssV3_1 `{'score': 6.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: suse

Published: 2026-03-04T15:08:11.734Z

Updated: 2026-03-04T16:11:33.803Z

Reserved: 2025-10-24T10:34:22.765Z

Link: CVE-2025-62879

Vulnrichment

Updated: 2026-03-04T16:11:30.623Z

NVD

Status : Received

Published: 2026-03-04T16:16:25.967

Modified: 2026-03-04T16:16:25.967

Link: CVE-2025-62879

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-532

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-62879", "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "state": "PUBLISHED", "assignerShortName": "suse", "dateReserved": "2025-10-24T10:34:22.765Z", "datePublished": "2026-03-04T15:08:11.734Z", "dateUpdated": "2026-03-04T16:11:33.803Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "packageName": "github.com/rancher/backup-restore-operator", "product": "Rancher", "vendor": "SUSE", "versions": [{"lessThan": "9.0.1", "status": "affected", "version": "9.0.0", "versionType": "semver"}, {"lessThan": "8.1.2", "status": "affected", "version": "8.0.0", "versionType": "semver"}, {"lessThan": "7.0.5", "status": "affected", "version": "7.0.0", "versionType": "semver"}, {"lessThan": "6.0.3", "status": "affected", "version": "6.0.0", "versionType": "semver"}]}], "datePublic": "2026-02-03T10:09:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens (both <code>accessKey</code> and <code>secretKey</code>) into the rancher-backup-operator pod's logs.<br>"}], "value": "A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens (both accessKey and secretKey) into the rancher-backup-operator pod's logs."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-532", "description": "CWE-532: Insertion of Sensitive Information into Log File", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2026-03-04T15:08:11.734Z"}, "references": [{"url": "https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-62879"}, {"url": "https://github.com/advisories/GHSA-wj3p-5h3x-c74q"}], "source": {"discovery": "UNKNOWN"}, "title": "Rancher Backup Operator pod's logs leak S3 tokens", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-04T16:11:27.835968Z", "id": "CVE-2025-62879", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-04T16:11:33.803Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-62879", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-04T16:11:27.835968Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-04T16:11:30.623Z"}}], "cna": {"title": "Rancher Backup Operator pod's logs leak S3 tokens", "source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "SUSE", "product": "Rancher", "versions": [{"status": "affected", "version": "9.0.0", "lessThan": "9.0.1", "versionType": "semver"}, {"status": "affected", "version": "8.0.0", "lessThan": "8.1.2", "versionType": "semver"}, {"status": "affected", "version": "7.0.0", "lessThan": "7.0.5", "versionType": "semver"}, {"status": "affected", "version": "6.0.0", "lessThan": "6.0.3", "versionType": "semver"}], "packageName": "github.com/rancher/backup-restore-operator", "defaultStatus": "unaffected"}], "datePublic": "2026-02-03T10:09:00.000Z", "references": [{"url": "https://bugzilla.suse.com/show_bug.cgi?id=CVE-2025-62879"}, {"url": "https://github.com/advisories/GHSA-wj3p-5h3x-c74q"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens (both accessKey and secretKey) into the rancher-backup-operator pod's logs.", "supportingMedia": [{"type": "text/html", "value": "A vulnerability has been identified within the Rancher Backup Operator, resulting in the leakage of S3 tokens (both <code>accessKey</code> and <code>secretKey</code>) into the rancher-backup-operator pod's logs.<br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-532", "description": "CWE-532: Insertion of Sensitive Information into Log File"}]}], "providerMetadata": {"orgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "shortName": "suse", "dateUpdated": "2026-03-04T15:08:11.734Z"}}}, "cveMetadata": {"cveId": "CVE-2025-62879", "state": "PUBLISHED", "dateUpdated": "2026-03-04T16:11:33.803Z", "dateReserved": "2025-10-24T10:34:22.765Z", "assignerOrgId": "404e59f5-483d-4b8a-8e7a-e67604dd8afb", "datePublished": "2026-03-04T15:08:11.734Z", "assignerShortName": "suse"}, "dataVersion": "5.2"}