CVE-2021-38554 - log back

CVE-2021-38554 edited at 13 Aug 2021 18:25:44
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Information disclosure
Description
+ HashiCorp Vault's UI up to version 1.7.3 erroneously cached and exposed user-viewed secrets between sessions in a single shared browser.
References
+ https://discuss.hashicorp.com/t/hcsec-2021-19-vault-s-ui-cached-user-viewed-secrets-between-shared-browser-sessions/28166
Notes
CVE-2021-38554 created at 13 Aug 2021 18:14:58