Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-35453

Disclosure Date: December 17, 2020 (last updated November 28, 2024)
HashiCorp Vault Enterprise’s Sentinel EGP policy feature incorrectly allowed requests to be processed in parent and sibling namespaces. Fixed in 1.5.6 and 1.6.1.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0