Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2023/04/25 12:19 p.m.69 views

CVE-2022-36129

A flaw was found in HashiCorp Vault Enterprise which could allow a remote attacker to bypass security restrictions. This issue is caused by the failure to verify existing voter status when joining an Integrated Storage HA Node. By sending a specially crafted request, an attacker could override th...

7.3CVSS8.7AI score0.01333EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/07/26 11:15 p.m.5 views

CVE-2022-36129

HashiCorp Vault Enterprise 1.7.0 through 1.9.7, 1.10.4, and 1.11.0 clusters using Integrated Storage expose an unauthenticated API endpoint that could be abused to override the voter status of a node within a Vault HA cluster, introducing potential for future data loss or catastrophic failure...

9.1CVSS5.8AI score0.01333EPSS
Exploits0References4
NVD
NVD
added 2022/07/26 11:15 p.m.22 views

CVE-2022-36129

HashiCorp Vault Enterprise 1.7.0 through 1.9.7, 1.10.4, and 1.11.0 clusters using Integrated Storage expose an unauthenticated API endpoint that could be abused to override the voter status of a node within a Vault HA cluster, introducing potential for future data loss or catastrophic failure...

9.1CVSS0.01333EPSS
Exploits0References3
OSV
OSV
added 2022/07/26 11:15 p.m.13 views

CVE-2022-36129

HashiCorp Vault Enterprise 1.7.0 through 1.9.7, 1.10.4, and 1.11.0 clusters using Integrated Storage expose an unauthenticated API endpoint that could be abused to override the voter status of a node within a Vault HA cluster, introducing potential for future data loss or catastrophic failure...

9.1CVSS6.9AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/07/26 12:0 a.m.7 views

PT-2022-23215 · Hashicorp · Hashicorp Vault Enterprise

Name of the Vulnerable Software and Affected Versions: HashiCorp Vault Enterprise versions 1.7.0 through 1.9.7 HashiCorp Vault Enterprise version 1.10.4 HashiCorp Vault Enterprise version 1.11.0 Description: The issue concerns an unauthenticated API endpoint in HashiCorp Vault Enterprise that cou...

9.1CVSS7.5AI score0.01333EPSS
Exploits0References7
Rows per page
Query Builder