CVE-2022-25243Improper Certificate Validation in Vault

CWE-295Improper Certificate ValidationCWE-285Improper Authorization3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 52.03%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Hashicorp Vault
Timeline
PublishedMar 10
Latest updateMar 11

Description

"Vault and Vault Enterprise 1.8.0 through 1.8.8, and 1.9.3 allowed the PKI secrets engine under certain configurations to issue wildcard certificates to authorized users for a specified domain, even if the PKI role policy attribute allow_subdomains is set to false. Fixed in Vault Enterprise 1.8.9 and 1.9.4.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

NVDhashicorp/vault1.8.01.8.9+1

🔴Vulnerability Details

1
GHSA
GHSA-p3j9-qwh2-784j: "Vault and Vault Enterprise 12022-03-11

📋Vendor Advisories

1
Red Hat
vault: PKI Secrets Engine Policy Results In Incorrect Wildcard Certificate Issuance2022-03-10