github.com/spiffe/spire is vulnerable to authorization bypass. The vulnerability exists as requests made to the FetchX509SVID
RPC can issue a X.509 certificate with a URI SAN
for a SPIFFE ID
to an unauthorized agent.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/spiffe/spire | le | 0.8.4 | |
github.com/spiffe/spire | le | 0.9.3 |