Headline

GHSA-mr4h-qf9j-f665: Hashicorp Vault has Code Execution Vulnerability via Plugin Configuration

A privileged Vault operator within the root namespace with write permission to {{sys/audit}} may obtain code execution on the underlying host if a plugin directory is set in Vault’s configuration. Fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23.

13 hours ago

ghsa

Open in Source

#vulnerability #auth

Attack vector: More severe the more the remote (logically and physically) an attacker can be in order to exploit the vulnerability.

Attack complexity: More severe for the least complex attacks.

Privileges required: More severe if no privileges are required.

User interaction: More severe when no user interaction is required.

Scope: More severe when a scope change occurs, e.g. one vulnerable component impacts resources in components beyond its security scope.

Confidentiality: More severe when loss of data confidentiality is highest, measuring the level of data access available to an unauthorized user.

Integrity: More severe when loss of data integrity is the highest, measuring the consequence of data modification possible by an unauthorized user.

Availability: More severe when the loss of impacted component availability is highest.

ghsa: Latest News

GHSA-85cg-cmq5-qjm7: @nestjs/devtools-integration: CSRF to Sandbox Escape Allows for RCE against JS Developers

13 hours ago

ghsa

GHSA-6c5r-4wfc-3mcx: Hashicorp Vault has Incorrect Validation for Non-CA Certificates

13 hours ago

ghsa

GHSA-mwgr-84fv-3jh9: Hashicorp Vault has an Observable Discrepancy on Existing and Non-Existing Users

13 hours ago

ghsa

GHSA-mr4h-qf9j-f665: Hashicorp Vault has Code Execution Vulnerability via Plugin Configuration

13 hours ago

ghsa

GHSA-6h4p-m86h-hhgh: Hashicorp Vault has Privilege Escalation Vulnerability

13 hours ago

ghsa