CVE-2021-43998
published 2021-11-30CVE-2021-43998: HashiCorp Vault and Vault Enterprise 0.11.0 up to 1.7.5 and 1.8.4 templated ACL policies would always match the first-created entity alias if multiple entity…
PriorityP433medium6.5CVSS 3.1
AVNACLPRHUINSUCHIHAN
EPSS
1.01%
58.7th percentile
HashiCorp Vault and Vault Enterprise 0.11.0 up to 1.7.5 and 1.8.4 templated ACL policies would always match the first-created entity alias if multiple entity aliases exist for a specified entity and mount combination, potentially resulting in incorrect policy enforcement. Fixed in Vault and Vault Enterprise 1.7.6, 1.8.5, and 1.9.0.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | hashicorp_vault | >= 0.11.0 < 1.7.6 | 1.7.6 |
| github.com | hashicorp_vault | >= 1.8.0 < 1.8.5 | 1.8.5 |
| hashicorp | vault | — | — |
| hashicorp | vault | 0.11.0 – 1.7.5 | — |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
nvdv2.05.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:N
vendor_redhat6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
vault: incorrect policy enforcement
vendor_redhat·2021-11-18·CVSS 6.5
CVE-2021-43998 [MEDIUM] CWE-732 vault: incorrect policy enforcement
vault: incorrect policy enforcement
HashiCorp Vault and Vault Enterprise 0.11.0 up to 1.7.5 and 1.8.4 templated ACL policies would always match the first-created entity alias if multiple entity aliases exist for a specified entity and mount combination, potentially resulting in incorrect policy enforcement. Fixed in Vault and Vault Enterprise 1.7.6, 1.8.5, and 1.9.0.
A flaw was found in HashiCorp Vault. In affected versions of HashiCorp Vault and Vault Enterprise, templated ACL policies would always match the first-created entity alias if multiple entity aliases exist for a specified entity and mount combination, potentially resulting in incorrect policy enforcement.
Package: openshift-logging/logging-loki-rhel9 (Logging Subsystem for Red Hat OpenShift) - Not affected
Package: openshif
OSV
HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
osv·2024-08-21
CVE-2021-43998 HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
GHSA
HashiCorp Vault Incorrect Permission Assignment for Critical Resource
ghsa·2021-12-02
CVE-2021-43998 [CRITICAL] CWE-732 HashiCorp Vault Incorrect Permission Assignment for Critical Resource
HashiCorp Vault Incorrect Permission Assignment for Critical Resource
HashiCorp Vault and Vault Enterprise 0.11.0 up to 1.7.5 and 1.8.4 templated ACL policies would always match the first-created entity alias if multiple entity aliases exist for a specified entity and mount combination, potentially resulting in incorrect policy enforcement. Fixed in Vault and Vault Enterprise 1.7.6, 1.8.5, and 1.9.0.
OSV
HashiCorp Vault Incorrect Permission Assignment for Critical Resource
osv·2021-12-02
CVE-2021-43998 [CRITICAL] HashiCorp Vault Incorrect Permission Assignment for Critical Resource
HashiCorp Vault Incorrect Permission Assignment for Critical Resource
HashiCorp Vault and Vault Enterprise 0.11.0 up to 1.7.5 and 1.8.4 templated ACL policies would always match the first-created entity alias if multiple entity aliases exist for a specified entity and mount combination, potentially resulting in incorrect policy enforcement. Fixed in Vault and Vault Enterprise 1.7.6, 1.8.5, and 1.9.0.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://discuss.hashicorp.com/t/hcsec-2021-30-vaults-templated-acl-policies-matched-first-created-alias-per-entity-and-auth-backend/32132https://security.gentoo.org/glsa/202207-01https://discuss.hashicorp.com/t/hcsec-2021-30-vaults-templated-acl-policies-matched-first-created-alias-per-entity-and-auth-backend/32132https://security.gentoo.org/glsa/202207-01
2021-11-30
Published