2 matches found
CVE-2021-32074
HashiCorp vault-action aka Vault GitHub Action before 2.2.0 allows attackers to obtain sensitive information from log files because a multi-line secret was not correctly registered with GitHub Actions for log masking...
CVE-2021-32074
HashiCorp vault-action (Vault GitHub Action) prior to version 2.2.0 is affected. Affected component: vault-action, which fails to correctly register multi-line secrets for GitHub Actions log masking, enabling potential disclosure of sensitive information from logs. Remediation: upgrade to vault-a...