HashiCorp Vault Enterprise 0.9.2 through 1.6.2 allowed the read of license metadata from DR secondaries without authentication. Fixed in 1.6.3.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-08-31T17:01:43
Updated: 2024-08-03T21:26:10.800Z
Reserved: 2021-02-24T00:00:00
Link: CVE-2021-27668
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-08-31T18:15:07.843
Modified: 2024-11-21T05:58:24.530
Link: CVE-2021-27668
Redhat