3 matches found
GHSA-HWC3-3QH6-R4GG HashiCorp Vault's PKI mount vulnerable to denial of service
HashiCorp Vault's PKI mount issuer endpoints did not correctly authorize access to remove an issuer or modify issuer metadata, potentially resulting in denial of service of the PKI mount. This bug did not affect public or private key material, trust chains or certificate issuance. Fixed in Vault...
Denial of service
HashiCorp Vault's PKI mount issuer endpoints did not correctly authorize access to remove an issuer or modify issuer metadata, potentially resulting in denial of service of the PKI mount. This bug did not affect public or private key material, trust chains or certificate issuance. Fixed in Vault...
CVE-2023-0665
HashiCorp Vault’s PKI mount issuer endpoints were vulnerable to insufficient access control, allowing a remote attacker to cause a denial of service by removing an issuer or altering issuer metadata. The defect specifically affects the PKI issuer management surface but does not impact private key...