Lucene search
PRIOn knowledge basePRION:CVE-2023-0620HistoryMar 30, 2023 - 1:15 a.m.
Sql injection
2023-03-3001:15:00
PRIOn knowledge base
www.prio-n.com
6
hashicorp vault
sql injection
mssql
database storage backend
vulnerability
nvd
security
HashiCorp Vault and Vault Enterprise versions 0.8.0 through 1.13.1 are vulnerable to an SQL injection attack when configuring the Microsoft SQL (MSSQL) Database Storage Backend. When configuring the MSSQL plugin through the local, certain parameters are not sanitized when passed to the user-provided MSSQL database. An attacker may modify these parameters to execute a malicious SQL command.
This issue is fixed in versions 1.13.1, 1.12.5, and 1.11.9.
Related
osv
osv
CVE-2023-0620
2023-03-30 01:15:07
BIT-vault-2023-0620
2024-03-06 11:09:41
github
github
cve
cve
CVE-2023-0620
2023-03-30 01:15:07
cgr
cgr
CVE-2023-0620 vulnerabilities
2024-05-19 03:07:16
nvd
nvd
CVE-2023-0620
2023-03-30 01:15:07
veracode
veracode
SQL Injection
2023-04-06 12:07:02
redhatcve
redhatcve
CVE-2023-0620
2023-04-05 11:43:18
cvelist
cvelist
wolfi
wolfi
CVE-2023-0620 vulnerabilities
2024-07-04 09:08:38
wallarmlab
wallarmlab
ChatGPT: Friend or Foe? | API Security Newsletter
2023-05-16 13:58:20
ibm
ibm
redhat
redhat