hashicorp-vault-plugin is vulnerable to information disclosure. Remote unauthenticated attackers are able to gain access to sensitive information by controlling agent processes to obtain Vault secrets via an attacker-specified path and key.
CPE | Name | Operator | Version |
---|---|---|---|
hashicorp vault plugin | le | 3.8.0 | |
hashicorp vault plugin | le | 3.8.0 |