Added |
CPE Configuration |
|
OR
*cpe:2.3:a:hashicorp:vault:*:*:*:*:-:*:*:* versions from (including) 1.4.0 up to (excluding) 1.7.7
*cpe:2.3:a:hashicorp:vault:*:*:*:*:enterprise:*:*:* versions from (including) 1.4.0 up to (excluding) 1.7.7
*cpe:2.3:a:hashicorp:vault:*:*:*:*:-:*:*:* versions from (including) 1.8.0 up to (excluding) 1.8.6
*cpe:2.3:a:hashicorp:vault:*:*:*:*:enterprise:*:*:* versions from (including) 1.8.0 up to (excluding) 1.8.6
*cpe:2.3:a:hashicorp:vault:1.9.0:*:*:*:-:*:*:*
*cpe:2.3:a:hashicorp:vault:1.9.0:*:*:*:enterprise:*:*:*
|
Added |
CVSS V2 |
|
NIST (AV:N/AC:L/Au:S/C:N/I:N/A:C)
|
Added |
CVSS V3.1 |
|
NIST AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
|
Added |
CWE |
|
NIST NVD-CWE-noinfo
|
Changed |
Reference Type |
https://discuss.hashicorp.com/t/hcsec2-21-33-vault-s-kv-secrets-engine-with-integrated-storage-exposed-to-authenticated-denial-of-service/33157 No Types Assigned
|
https://discuss.hashicorp.com/t/hcsec2-21-33-vault-s-kv-secrets-engine-with-integrated-storage-exposed-to-authenticated-denial-of-service/33157 Vendor Advisory
|
Changed |
Reference Type |
https://www.hashicorp.com/blog/category/vault No Types Assigned
|
https://www.hashicorp.com/blog/category/vault Product, Vendor Advisory
|