5 matches found
CVE-2024-2048 vulnerabilities
Vulnerabilities for packages: k3d...
CVE-2024-2048 vulnerabilities
Vulnerabilities for packages: k3d...
CVE-2024-2048 Vault Cert Auth Method Did Not Correctly Validate Non-CA Certificates
Vault and Vault Enterprise “Vault” TLS certificate auth method did not correctly validate client certificates when configured with a non-CA certificate as trusted certificate. In this configuration, an attacker may be able to craft a malicious certificate that could be used to bypass...
CVE-2024-2048
CVE-2024-2048 affects Vault and Vault Enterprise where TLS certificate auth did not properly validate client certificates when configured with a non-CA trusted certificate, potentially allowing certificate-based authentication bypass. The issue is fixed in Vault 1.15.5 and 1.14.10.
CVE-2024-2048 Vault Cert Auth Method Did Not Correctly Validate Non-CA Certificates
Vault and Vault Enterprise “Vault” TLS certificate auth method did not correctly validate client certificates when configured with a non-CA certificate as trusted certificate. In this configuration, an attacker may be able to craft a malicious certificate that could be used to bypass...