CVE-2023-24999

Summary

HashiCorp Vault and Vault Enterprise’s approle auth method allowed any authenticated user with access to an approle destroy endpoint to destroy the secret ID of any other role by providing the secret ID accessor. This vulnerability is fixed in Vault 1.13.0, 1.12.4, 1.11.8, 1.10.11 and above.

Affected Software

VendorProductVersion RangeStatus
HashiCorpVault1.12.0 < 1.12.4affected
HashiCorpVault1.11.0 < 1.11.8affected
HashiCorpVault0 < 1.10.11affected
HashiCorpVault Enterprise1.12.0 < 1.12.4affected
HashiCorpVault Enterprise1.11.0 < 1.11.8affected
HashiCorpVault Enterprise0 < 1.10.11affected

Weaknesses

  • CWE-863: CWE-863 Incorrect Authorization

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References