Vault’s Login MFA Configuration And Enforcement Not Reloaded After Restart
Summary A vulnerability was identified in Vault and Vault Enterprise “Vault” from 1.10.0 to 1.10.2 where MFA may not be enforced on user logins after a server restart. This vulnerability, CVE-2022-30689, was fixed in Vault 1.10.3. Background Vault provides a wide range authentication methods,...