3 matches found
CVE-2022-36130
HashiCorp Boundary up to 0.10.1 did not properly perform data integrity checks to ensure the resources were associated with the correct scopes, allowing potential privilege escalation for authorized users of another scope. Fixed in Boundary 0.10.2...
CVE-2022-36130
HashiCorp Boundary up to 0.10.1 did not properly perform data integrity checks to ensure the resources were associated with the correct scopes, allowing potential privilege escalation for authorized users of another scope. Fixed in Boundary 0.10.2...
CVE-2022-36130
CVE-2022-36130 concerns HashiCorp Boundary prior to 0.10.2. The issue is improper data integrity checks that allow privilege escalation for authorized users of another scope, by misallocating resources to scopes. A fixed version is Boundary 0.10.2. In practice, this means upgrading to 0.10.2 miti...