Vault - CVE CyberSecurity Database News

Nov 9, 2023 API Exploit HashiCorp Vault

CVE-2023-5954: HashiCorp Vault and Vault Enterprise Memory Consumption Vulnerability Fixed in Versions 1.15.2, 1.14.6, and 1.13.10

HashiCorp Vault is a popular open-source tool that allows users to store and manage sensitive data such as passwords, API keys, and tokens securely. Vault

Mar 30, 2023 HashiCorp Vault

CVE-2023-25000 - HashiCorp Vault Shamir's Secret Sharing Cache-timing Attack Vulnerability

HashiCorp Vault is an open-source tool for securing, storing, and tightly controlling access to secrets and sensitive data in modern computing environments. One of Vault&

Mar 11, 2023 Exploit HashiCorp Vault

CVE-2023-24999 - HashiCorp Vault and Vault Enterprise's Critical Vulnerability and the Importance of Ensuring Secret ID Confidentiality within Your Organization

Recently, a critical vulnerability (CVE-2023-24999) has been identified in HashiCorp Vault and Vault Enterprise's approle auth method. This vulnerability enabled any authenticated user