You are viewing this page in an unauthorized frame window.
This is a potential security issue, you are being redirected to
https://nvd.nist.gov
An official website of the United States government
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock () or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
OR
*cpe:2.3:a:hashicorp:vault:*:*:*:*:-:*:*:* versions from (including) 1.8.0 up to (excluding) 1.9.9
*cpe:2.3:a:hashicorp:vault:*:*:*:*:enterprise:*:*:* versions from (including) 1.8.0 up to (excluding) 1.9.9
*cpe:2.3:a:hashicorp:vault:*:*:*:*:-:*:*:* versions from (including) 1.10.0 up to (excluding) 1.10.6
*cpe:2.3:a:hashicorp:vault:*:*:*:*:enterprise:*:*:* versions from (including) 1.10.0 up to (excluding) 1.10.6
*cpe:2.3:a:hashicorp:vault:*:*:*:*:-:*:*:* versions from (including) 1.11.0 up to (excluding) 1.11.3
*cpe:2.3:a:hashicorp:vault:*:*:*:*:enterprise:*:*:* versions from (including) 1.11.0 up to (excluding) 1.11.3
Added
CVSS V3.1
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Added
CWE
NIST NVD-CWE-noinfo
Changed
Reference Type
https://discuss.hashicorp.com No Types Assigned
https://discuss.hashicorp.com Vendor Advisory
Changed
Reference Type
https://discuss.hashicorp.com/t/hcsec-2022-18-vault-entity-alias-metadata-may-leak-between-aliases-with-the-same-name-assigned-to-the-same-entity/44550 No Types Assigned