{"id":"CVE-2022-43756","details":"A Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in SUSE Rancher allows remote attackers to cause denial of service by supplying specially crafted git credentials. This issue affects: SUSE Rancher wrangler version 0.7.3 and prior versions; wrangler version 0.8.4 and prior versions; wrangler version 1.0.0 and prior versions.","aliases":["GHSA-8fcj-gf77-47mg","GO-2023-1515"],"modified":"2026-02-11T13:25:59.336700Z","published":"2023-02-07T13:15:09.717Z","references":[{"type":"REPORT","url":"https://bugzilla.suse.com/show_bug.cgi?id=1205296"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/rancher/wrangler","events":[{"introduced":"0"},{"fixed":"12397eec50155cb2d24aa70bdf9e90c5f3b9a727"},{"introduced":"b1b1eff795f1507fd20fb73b205d47bc160dc9f2"},{"fixed":"1013bc2cb2f26bd36a23e6a2cdac1a753a6f13a4"}]}],"versions":["v0.8.0","v0.8.1","v0.8.2","v0.8.3","v0.8.4"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-43756.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}