HashiCorp Vault Enterprise’s Sentinel EGP policy feature incorrectly allowed requests to be processed in parent and sibling namespaces. Fixed in 1.5.6 and 1.6.1.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2020-12-17 05:15
Updated : 2024-02-28 18:08
NVD link : CVE-2020-35453
Mitre link : CVE-2020-35453
CVE.ORG link : CVE-2020-35453
JSON object : View
Products Affected
hashicorp
- vault
CWE