CVE-2021-27400 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Certificate verification bypass |
| Description | HashiCorp Vault and Vault Enterprise Cassandra integrations (storage backend and database secrets engine plugin) did not validate TLS certificates when connecting to Cassandra clusters. Fixed in 1.6.4 and 1.7.1. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-1860 | vault | 1.7.0-1 | 1.7.1-2 | Medium | Fixed |