AVG-2457 log
Package | vault |
Status | Not affected |
Severity | Medium |
Type | privilege escalation |
Affected | 1.7.3-1 |
Fixed | Not affected |
Current | 1.18.2-1 [extra] |
Ticket | None |
Created | Mon Oct 11 09:23:59 2021 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2021-42135 | Medium | Yes | Privilege escalation | HashiCorp Vault 1.8.x through 1.8.4 may have an unexpected interaction between glob-related policies and the Google Cloud secrets engine. Users may, in some... |