CVE-2021-41802
published 2021-10-08CVE-2021-41802: HashiCorp Vault and Vault Enterprise through 1.7.4 and 1.8.3 allowed a user with write permission to an entity alias ID sharing a mount accessor with another…
PriorityP427medium5.4CVSS 3.1
AVNACLPRLUINSUCLILAN
EPSS
0.59%
43.8th percentile
HashiCorp Vault and Vault Enterprise through 1.7.4 and 1.8.3 allowed a user with write permission to an entity alias ID sharing a mount accessor with another user to acquire this other user’s policies by merging their identities. Fixed in Vault and Vault Enterprise 1.7.5 and 1.8.4.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | hashicorp_vault | >= 0 < 1.7.5 | 1.7.5 |
| github.com | hashicorp_vault | >= 1.8.0 < 1.8.4 | 1.8.4 |
| hashicorp | vault | < 1.7.5 | 1.7.5 |
| hashicorp | vault | >= 1.8.0 < 1.8.4 | 1.8.4 |
CVSS provenance
nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
nvdv2.05.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:N
vendor_redhat2.9LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
osv·2024-08-21
CVE-2021-41802 Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
OSV
Hashicorp Vault Privilege Escalation Vulnerability
osv·2021-10-12
CVE-2021-41802 [LOW] Hashicorp Vault Privilege Escalation Vulnerability
Hashicorp Vault Privilege Escalation Vulnerability
HashiCorp Vault and Vault Enterprise through 1.7.4 and 1.8.3 allowed a user with write permission to an entity alias ID sharing a mount accessor with another user to acquire this other user’s policies by merging their identities. Fixed in Vault and Vault Enterprise 1.7.5 and 1.8.4.
GHSA
Hashicorp Vault Privilege Escalation Vulnerability
ghsa·2021-10-12
CVE-2021-41802 [LOW] CWE-269 Hashicorp Vault Privilege Escalation Vulnerability
Hashicorp Vault Privilege Escalation Vulnerability
HashiCorp Vault and Vault Enterprise through 1.7.4 and 1.8.3 allowed a user with write permission to an entity alias ID sharing a mount accessor with another user to acquire this other user’s policies by merging their identities. Fixed in Vault and Vault Enterprise 1.7.5 and 1.8.4.
Red Hat
vault: Incorrect Permission Assignment for Critical Resource
vendor_redhat·2021-10-08·CVSS 2.9
CVE-2021-41802 [LOW] CWE-732 vault: Incorrect Permission Assignment for Critical Resource
vault: Incorrect Permission Assignment for Critical Resource
HashiCorp Vault and Vault Enterprise through 1.7.4 and 1.8.3 allowed a user with write permission to an entity alias ID sharing a mount accessor with another user to acquire this other user’s policies by merging their identities. Fixed in Vault and Vault Enterprise 1.7.5 and 1.8.4.
Package: openshift-logging/logging-loki-rhel9 (Logging Subsystem for Red Hat OpenShift) - Not affected
Package: openshift4/ose-installer (Red Hat OpenShift Container Platform 4) - Not affected
Package: openshift4/topology-aware-lifecycle-manager-rhel8-operator (Red Hat OpenShift Container Platform 4) - Not affected
Package: ocs4/cephcsi-rhel8 (Red Hat Openshift Container Storage 4) - Not affected
Package: ocs4/mcg-rhel8-operator (Red Hat Openshif
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://discuss.hashicorp.com/t/hcsec-2021-27-vault-merging-multiple-entity-aliases-for-the-same-mount-may-allow-privilege-escalation/https://security.gentoo.org/glsa/202207-01https://discuss.hashicorp.com/t/hcsec-2021-27-vault-merging-multiple-entity-aliases-for-the-same-mount-may-allow-privilege-escalation/https://security.gentoo.org/glsa/202207-01
2021-10-08
Published