Lucene search
Alpine Linux Development TeamALPINE:CVE-2020-35177HistoryDec 17, 2020 - 5:15 a.m.
CVE-2020-35177
2020-12-1705:15:00
Alpine Linux Development Team
security.alpinelinux.org
19
0.001 Low
EPSS
Percentile
38.5%
HashiCorp Vault and Vault Enterprise 1.4.1 and newer allowed the enumeration of users via the LDAP auth method. Fixed in 1.5.6 and 1.6.1.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.13-community | noarch | vault | < 1.5.6-r0 | UNKNOWN |
| Alpine | 3.14-community | noarch | vault | < 1.5.6-r0 | UNKNOWN |
| Alpine | 3.15-community | noarch | vault | < 1.5.6-r0 | UNKNOWN |
| Alpine | 3.16-community | noarch | vault | < 1.5.6-r0 | UNKNOWN |
| Alpine | 3.17-community | noarch | vault | < 1.5.6-r0 | UNKNOWN |
| Alpine | 3.18-community | noarch | vault | < 1.5.6-r0 | UNKNOWN |
Related
freebsd
freebsd
vault -- User Enumeration via LDAP auth
2020-12-16 00:00:00
prion
prion
Denial of service
2020-12-17 05:15:00
cve
cve
CVE-2020-35177
2020-12-17 05:15:00
cvelist
cvelist
CVE-2020-35177
2020-12-17 04:17:27
redhatcve
redhatcve
CVE-2020-35177
2021-04-23 19:13:42
veracode
veracode
Information Disclosure
2020-12-18 08:40:42
osv
osv
CVE-2020-35177
2020-12-17 05:15:10
Enumeration of users in HashiCorp Vault
2024-01-31 23:11:40
BIT-vault-2020-35177
2024-03-06 11:11:22
github
github
Enumeration of users in HashiCorp Vault
2024-01-31 23:11:40
nessus
nessus