A vulnerability was found in Hashicorp Vault and Vault Enterprise up to 1.7.4/1.8.3. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Identity Handler. Upgrading to version 1.7.5 or 1.8.4 eliminates this vulnerability.
Hashicorp Vault/Vault Enterprise up to 1.7.4/1.8.3 Identity permission
- Virtual Patching
- October 9, 2021
- 4:06 pm
Contact us to get started
CVE-2024-50282 : LINUX KERNEL UP TO 6.11.7 AMD GPU AMDGPU_DEBUGFS_GPRWAVE_READ BUFFER OVERFLOW
Description In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() Avoid a
CVE-2024-50919 : JPRESS 5.1.1 ON WINDOWS JSP FILE UNRESTRICTED UPLOAD
Description Jpress until v5.1.1 has arbitrary file uploads on the windows platform, and the construction of non-standard file formats such
CVE-2024-47873 : PHPOFFICE PHPSPREADSHEET UP TO 1.29.3/2.1.2/2.3.1/3.3.X SCAN/FINDCHARSET XML EXTERNAL ENTITY REFERENCE
Description PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. The XmlScanner class has a scan method which