CVE-2023-0665 — Improper Authorization in Vault

CWE-285 — Improper Authorization5 documents4 sources

Severity

6.5MEDIUMNVD

EPSS

0.1%

top 73.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Hashicorp Vault Hashicorp Vault Enterprise Github.com Hashicorp Vault

Timeline

PublishedMar 30

Latest updateAug 20

Description

HashiCorp Vault's PKI mount issuer endpoints did not correctly authorize access to remove an issuer or modify issuer metadata, potentially resulting in denial of service of the PKI mount. This bug did not affect public or private key material, trust chains or certificate issuance. Fixed in Vault 1.13.1, 1.12.5, and 1.11.9.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:LExploitability: 3.9 | Impact: 2.5

Affected Packages4 packages

▶CVEListV5hashicorp/vault1.11.0 — 1.11.9

▶NVDhashicorp/vault1.12.0 — 1.12.5+2

▶CVEListV5hashicorp/vault_enterprise1.13.0 — 1.13.1+2

▶Gogithub.com/hashicorp_vault1.12.0 — 1.12.5+2

Patches

Patch: discuss.hashicorp.com ↗Patch: discuss.hashicorp.com ↗

🔴Vulnerability Details

OSV

HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault↗2024-08-20

▶

OSV

HashiCorp Vault's PKI mount vulnerable to denial of service↗2023-03-30

▶

GHSA

HashiCorp Vault's PKI mount vulnerable to denial of service↗2023-03-30

▶

📋Vendor Advisories

Red Hat

hashicorp/vault: Vault’s PKI Issuer Endpoint Did Not Correctly Authorize Access to Issuer Metadata↗2023-03-30

▶