Lucene search
GitHub Advisory DatabaseGHSA-FP52-QW33-MFMWHistoryAug 02, 2021 - 5:11 p.m.
Authentication Bypass by Spoofing and Insufficient Verification of Data Authenticity in Hashicorp Vault
2021-08-0217:11:41
CWE-290
CWE-345
GitHub Advisory Database
github.com
31
0.002 Low
EPSS
Percentile
54.9%
HashiCorp Vault and Vault Enterprise versions 0.7.1 and newer, when configured with the AWS IAM auth method, may be vulnerable to authentication bypass. Fixed in 1.2.5, 1.3.8, 1.4.4, and 1.5.1…
Related
osv
osv
BIT-vault-2020-16250
2024-03-06 11:11:36
CVE-2020-16250
2020-08-26 15:15:12
cvelist
cvelist
CVE-2020-16250
2020-08-26 14:17:44
redhatcve
redhatcve
CVE-2020-16250
2023-02-06 10:56:04
cgr
cgr
CVE-2020-16250 vulnerabilities
2024-05-19 03:07:16
cve
cve
CVE-2020-16250
2020-08-26 15:15:00
alpinelinux
alpinelinux
CVE-2020-16250
2020-08-26 15:15:00
veracode
veracode
Authentication Bypass
2020-08-27 05:39:09
prion
prion
Authentication flaw
2020-08-26 15:15:00
googleprojectzero
googleprojectzero
Enter the Vault: Authentication Issues in HashiCorp Vault
2020-10-06 00:00:00
wolfi
wolfi
CVE-2020-16250 vulnerabilities
2024-05-21 09:07:17
ibm
ibm
redhat
redhat