Lucene search

GitHub Advisory DatabaseGHSA-9VRM-V9XV-X3XR

HistoryJul 06, 2023 - 7:24 p.m.

HashiCorp Boundary Workers Store Rotated Credentials in Plaintext Even When Key Management Service Configured

2023-07-0619:24:09

CWE-311

CWE-312

GitHub Advisory Database

github.com

hashicorp boundary

workers

rotated credentials

plaintext

key management service

pki

kms

configuration

automatic rotation

encryption

version 0.10.0

version 0.11.2

version 0.12.0.

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

0.0004 Low

EPSS

Percentile

9.0%

JSON

HashiCorp Boundary from 0.10.0 through 0.11.2 contain an issue where when using a PKI-based worker with a Key Management Service (KMS) defined in the configuration file, new credentials created after an automatic rotation may not have been encrypted via the intended KMS. This would result in the credentials being stored in plaintext on the Boundary PKI worker’s disk. This issue is fixed in version 0.12.0.

Affected configurations

Vulners

Node

hashicorpboundaryRange<0.12.0

CPENameOperatorVersion
github.com/hashicorp/boundarylt0.12.0

CPE	Name	Operator	Version
	github.com/hashicorp/boundary	lt	0.12.0

References

discuss.hashicorp.com/t/hcsec-2023-03-boundary-workers-store-rotated-credentials-in-plaintext-even-when-key-management-service-configured/49907

github.com/advisories/GHSA-9vrm-v9xv-x3xr

nvd.nist.gov/vuln/detail/CVE-2023-0690

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

0.0004 Low

EPSS

Percentile

9.0%

JSON

Related for GHSA-9VRM-V9XV-X3XR