Lucene search
GoogleOSV:GHSA-PFMW-VJ74-PH8GHistoryDec 02, 2021 - 5:48 p.m.
HashiCorp Vault Incorrect Permission Assignment for Critical Resource
2021-12-0217:48:30
Google
osv.dev
7
HashiCorp Vault and Vault Enterprise 0.11.0 up to 1.7.5 and 1.8.4 templated ACL policies would always match the first-created entity alias if multiple entity aliases exist for a specified entity and mount combination, potentially resulting in incorrect policy enforcement. Fixed in Vault and Vault Enterprise 1.7.6, 1.8.5, and 1.9.0.
Related
nvd
nvd
CVE-2021-43998
2021-11-30 15:15:07
redhatcve
redhatcve
CVE-2021-43998
2023-02-06 03:56:00
cvelist
cvelist
CVE-2021-43998
2021-11-30 14:59:08
prion
prion
Design/Logic Flaw
2021-11-30 15:15:00
osv
osv
CVE-2021-43998
2021-11-30 15:15:07
BIT-vault-2021-43998
2024-03-06 11:10:23
github
github
HashiCorp Vault Incorrect Permission Assignment for Critical Resource
2021-12-02 17:48:30
veracode
veracode
Privilege Escalation
2021-12-03 03:10:51
cve
cve
CVE-2021-43998
2021-11-30 15:15:07
redhat
redhat
gentoo
gentoo
HashiCorp Vault: Multiple Vulnerabilities
2022-07-29 00:00:00
nessus
nessus
GLSA-202207-01 : HashiCorp Vault: Multiple Vulnerabilities
2022-08-02 00:00:00