CVE-2020-35177
published 2020-12-17CVE-2020-35177: HashiCorp Vault and Vault Enterprise 1.4.1 and newer allowed the enumeration of users via the LDAP auth method. Fixed in 1.5.6 and 1.6.1.
PriorityP425medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EPSS
1.29%
66.6th percentile
HashiCorp Vault and Vault Enterprise 1.4.1 and newer allowed the enumeration of users via the LDAP auth method. Fixed in 1.5.6 and 1.6.1.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | hashicorp_vault | >= 1.5.0 < 1.5.6 | 1.5.6 |
| github.com | hashicorp_vault | >= 1.6.0 < 1.6.1 | 1.6.1 |
| hashicorp | vault | >= 1.5.0 < 1.5.6 | 1.5.6 |
| hashicorp | vault | >= 1.6.0 < 1.6.1 | 1.6.1 |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_redhat5.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
osv·2024-06-28
CVE-2020-35177 Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
OSV
Enumeration of users in HashiCorp Vault
osv·2024-01-31
CVE-2020-35177 [MEDIUM] Enumeration of users in HashiCorp Vault
Enumeration of users in HashiCorp Vault
HashiCorp Vault and Vault Enterprise allowed the enumeration of users via the LDAP auth method. Fixed in 1.5.6 and 1.6.1.
GHSA
Enumeration of users in HashiCorp Vault
ghsa·2024-01-31
CVE-2020-35177 [MEDIUM] CWE-200 Enumeration of users in HashiCorp Vault
Enumeration of users in HashiCorp Vault
HashiCorp Vault and Vault Enterprise allowed the enumeration of users via the LDAP auth method. Fixed in 1.5.6 and 1.6.1.
Red Hat
vault: Enumeration of users via the LDAP auth method
vendor_redhat·2020-12-17·CVSS 5.3
CVE-2020-35177 [MEDIUM] CWE-200 vault: Enumeration of users via the LDAP auth method
vault: Enumeration of users via the LDAP auth method
HashiCorp Vault and Vault Enterprise 1.4.1 and newer allowed the enumeration of users via the LDAP auth method. Fixed in 1.5.6 and 1.6.1.
Package: openshift-logging/logging-loki-rhel9 (Logging Subsystem for Red Hat OpenShift) - Not affected
Package: servicemesh (OpenShift Service Mesh 1) - Not affected
Package: servicemesh (OpenShift Service Mesh 2.0) - Not affected
Package: vault (Red Hat Advanced Cluster Management for Kubernetes 2) - Not affected
Package: openshift4/ose-installer (Red Hat OpenShift Container Platform 4) - Not affected
Package: openshift4/topology-aware-lifecycle-manager-rhel8-operator (Red Hat OpenShift Container Platform 4) - Not affected
Package: ocs4/cephcsi-rhel8 (Red Hat Openshift Container Storage 4) - N
No detection rules found.
No public exploits indexed.
https://discuss.hashicorp.com/t/hcsec-2020-25-vault-s-ldap-auth-method-allows-user-enumeration/18984https://github.com/hashicorp/vault/blob/master/CHANGELOG.md#161https://discuss.hashicorp.com/t/hcsec-2020-25-vault-s-ldap-auth-method-allows-user-enumeration/18984https://github.com/hashicorp/vault/blob/master/CHANGELOG.md#161
2020-12-17
Published