The Vault and Vault Enterprise ("Vault") Google Cloud secrets engine did not preserve existing Google Cloud IAM Conditions upon creating or updating rolesets. Fixed in Vault 1.13.0.
Metrics
Affected Vendors & Products
References
History
Wed, 02 Oct 2024 02:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat openshift
|
|
CPEs | cpe:/a:redhat:openshift:4.17::el9 | |
Vendors & Products |
Redhat openshift
|
Thu, 26 Sep 2024 22:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-266 |
Mon, 23 Sep 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:hashicorp:vault:*:*:*:*:*:*:*:* | |
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: HashiCorp
Published: 2023-09-28T23:24:28.643Z
Updated: 2024-09-26T21:57:22.469Z
Reserved: 2023-09-19T20:49:08.136Z
Link: CVE-2023-5077
Vulnrichment
Updated: 2024-08-02T07:44:53.829Z
NVD
Status : Modified
Published: 2023-09-29T00:15:12.693
Modified: 2024-11-21T08:41:01.217
Link: CVE-2023-5077
Redhat