HashiCorp Vault Enterprise 0.9.2 through 1.6.2 allowed the read of license metadata from DR secondaries without authentication. Fixed in 1.6.3.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-08-31T17:01:43

Updated: 2024-08-03T21:26:10.800Z

Reserved: 2021-02-24T00:00:00

Link: CVE-2021-27668

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-08-31T18:15:07.843

Modified: 2024-11-21T05:58:24.530

Link: CVE-2021-27668

cve-icon Redhat

Severity : Moderate

Publid Date: 2021-08-31T00:00:00Z

Links: CVE-2021-27668 - Bugzilla