HashiCorp Vault and Vault Enterprise versions 0.8.3 and newer, when configured with the GCP GCE auth method, may be vulnerable to authentication bypass. Fixed in 1.2.5, 1.3.8, 1.4.4, and 1.5.1.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-04T13:37:54.175Z
Reserved: 2020-07-31T00:00:00
Link: CVE-2020-16251

No data.

Status : Modified
Published: 2020-08-26T15:15:12.913
Modified: 2024-11-21T05:07:01.677
Link: CVE-2020-16251


No data.