configutil

package
Go to main page

Versions in this module

v1
v1.17.3
Aug 6, 2024 GO-2022-0578
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
v1.17.2
Jul 5, 2024 GO-2022-0578
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
v1.17.1
Jun 25, 2024 GO-2022-0578 +1 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.17.0
Jun 10, 2024 GO-2022-0578 +1 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.17.0-rc1
May 28, 2024 GO-2022-0578 +2 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.16.3
May 29, 2024 GO-2022-0578
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
v1.16.2
Apr 22, 2024 GO-2022-0578 +2 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.16.1
Apr 3, 2024 GO-2022-0578 +2 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.16.0
Mar 25, 2024 GO-2022-0578 +2 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.16.0-rc3
Mar 11, 2024 GO-2022-0578 +3 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.16.0-rc2
Feb 20, 2024 GO-2022-0578 +3 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.16.0-rc1
Feb 12, 2024 GO-2022-0578 +3 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.15.6
Feb 28, 2024 GO-2022-0578 +3 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.15.5
Jan 26, 2024 GO-2022-0578 +3 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.15.4
Dec 5, 2023 GO-2022-0578 +5 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2511: Hashicorp Vault may expose sensitive log information in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.15.3
Nov 22, 2023 GO-2022-0578 +6 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2511: Hashicorp Vault may expose sensitive log information in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.15.2
Nov 6, 2023 GO-2022-0578 +6 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2511: Hashicorp Vault may expose sensitive log information in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.15.1
Oct 20, 2023 GO-2022-0578 +7 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2511: Hashicorp Vault may expose sensitive log information in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.15.0
Sep 22, 2023 GO-2022-0578 +7 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2511: Hashicorp Vault may expose sensitive log information in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.15.0-rc1
Sep 11, 2023 GO-2022-0578 +3 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.14.10
Feb 28, 2024 GO-2022-0578 +3 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.14.9
Jan 29, 2024 GO-2022-0578 +4 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.14.8
Dec 5, 2023 GO-2022-0578 +4 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.14.7
Nov 21, 2023 GO-2022-0578 +5 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.14.6
Nov 6, 2023 GO-2022-0578 +5 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.14.5
Oct 20, 2023 GO-2022-0578 +6 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
Changes in this version
type SharedConfig
v1.14.4
Sep 22, 2023 GO-2022-0578 +6 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.14.3
Sep 11, 2023 GO-2022-0578 +6 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.14.2
Aug 24, 2023 GO-2022-0578 +7 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.14.1
Jul 21, 2023 GO-2022-0578 +7 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.14.0
Jun 19, 2023 GO-2022-0578 +8 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
Changes in this version
type Listener
v1.14.0-rc1
Jun 7, 2023 GO-2022-0578 +4 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.13
Jan 29, 2024 GO-2022-0578 +4 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.12
Dec 5, 2023 GO-2022-0578 +4 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.11
Nov 21, 2023 GO-2022-0578 +5 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.10
Nov 6, 2023 GO-2022-0578 +5 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.9
Oct 20, 2023 GO-2022-0578 +6 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.8
Sep 22, 2023 GO-2022-0578 +6 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.7
Sep 11, 2023 GO-2022-0578 +6 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.6
Aug 24, 2023 GO-2022-0578 +7 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.5
Jul 21, 2023 GO-2022-0578 +7 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
Changes in this version
type SharedConfig
v1.13.4
Jun 19, 2023 GO-2022-0578 +8 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.3
Jun 7, 2023 GO-2022-0578 +8 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.2
Apr 25, 2023 GO-2022-0578 +9 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.1
Mar 23, 2023 GO-2022-0578 +9 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.13.0
Mar 1, 2023 GO-2022-0578 +12 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
Changes in this version
type Listener
type SharedConfig
v1.13.0-rc1
Feb 13, 2023 GO-2022-0578 +8 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.11
Sep 11, 2023 GO-2022-0578 +8 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.10
Aug 24, 2023 GO-2022-0578 +9 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.9
Jul 21, 2023 GO-2022-0578 +9 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.8
Jun 19, 2023 GO-2022-0578 +9 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.7
Jun 7, 2023 GO-2022-0578 +9 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.6
Apr 25, 2023 GO-2022-0578 +10 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.5
Mar 23, 2023 GO-2022-0578 +10 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.4
Feb 28, 2023 GO-2022-0578 +13 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.3
Feb 2, 2023 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.2
Nov 23, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.1
Oct 27, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.12.0
Oct 10, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2399: Denial of service via memory exhaustion in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
Changes in this version
type SharedConfig
v1.12.0-rc1
Sep 30, 2022 GO-2022-0578 +8 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.12
Jun 19, 2023 GO-2022-0578 +8 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.11
Jun 7, 2023 GO-2022-0578 +8 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.10
Apr 25, 2023 GO-2022-0578 +9 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.9
Mar 23, 2023 GO-2022-0578 +9 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.8
Feb 24, 2023 GO-2022-0578 +12 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.7
Feb 1, 2023 GO-2022-0578 +13 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.6
Nov 23, 2022 GO-2022-0578 +13 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.5
Oct 28, 2022 GO-2022-0578 +13 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.4
Sep 23, 2022 GO-2022-0578 +13 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.3
Aug 26, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.2
Jul 29, 2022 GO-2022-0578 +15 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.1
Jul 20, 2022 GO-2022-0578 +15 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.0
Jun 17, 2022 GO-2022-0578 +15 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.11.0-rc1
Jun 7, 2022 GO-2022-0578 +12 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.11
Feb 24, 2023 GO-2022-0578 +12 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.10
Feb 1, 2023 GO-2022-0578 +13 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.9
Nov 23, 2022 GO-2022-0578 +13 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.8
Oct 27, 2022 GO-2022-0578 +13 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.7
Sep 22, 2022 GO-2022-0578 +13 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.6
Aug 26, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.5
Jul 19, 2022 GO-2022-0578 +15 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.4
Jun 6, 2022 GO-2022-0578 +15 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.3
May 6, 2022 GO-2022-0578 +15 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.2
Apr 26, 2022 GO-2022-0578 +16 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-0590: HashiCorp Vault improper configuration of multi factor authentication in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.1
Apr 19, 2022 GO-2022-0578 +16 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-0590: HashiCorp Vault improper configuration of multi factor authentication in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
v1.10.0
Mar 21, 2022 GO-2022-0578 +16 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-0590: HashiCorp Vault improper configuration of multi factor authentication in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Alert  GO-2024-2982: Hashicorp Vault vulnerable to Improper Check or Handling of Exceptional Conditions in github.com/hashicorp/vault
Changes in this version
type Listener
v1.10.0-rc1
Feb 28, 2022 GO-2022-0578 +12 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.10
Sep 15, 2022 GO-2022-0578 +12 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.9
Aug 26, 2022 GO-2022-0578 +13 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.8
Jul 19, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.7
Jun 6, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.6
Apr 26, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.5
Apr 19, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.4
Feb 28, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.3
Jan 24, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.2
Dec 18, 2021 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.1
Dec 3, 2021 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.9.0
Nov 16, 2021 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Changes in this version
type Listener
v1.9.0-rc1
Nov 4, 2021 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.12
Jun 3, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.11
Apr 26, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.10
Apr 19, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.9
Feb 28, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.8
Jan 24, 2022 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.7
Dec 15, 2021 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.6
Dec 6, 2021 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.5
Nov 3, 2021 GO-2022-0578 +14 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.4
Oct 5, 2021 GO-2022-0578 +15 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.3
Sep 28, 2021 GO-2022-0578 +16 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.2
Aug 26, 2021 GO-2022-0578 +16 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.1
Aug 4, 2021 GO-2022-0578 +16 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.8.0
Jul 23, 2021 GO-2022-0578 +16 more
Alert  GO-2022-0578: Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-1021: HashiCorp Vault vulnerable to incorrect metadata access in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Changes in this version
type KMS
type Listener
type ListenerProfiling
type ListenerTelemetry
type SharedConfig
type Telemetry
v1.8.0-rc2
Jul 14, 2021 GO-2022-0620 +13 more
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.10
Feb 25, 2022 GO-2022-0620 +13 more
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.9
Jan 24, 2022 GO-2022-0620 +13 more
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.8
Dec 15, 2021 GO-2022-0620 +13 more
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.7
Dec 6, 2021 GO-2022-0620 +13 more
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.6
Nov 1, 2021 GO-2022-0620 +13 more
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.5
Sep 28, 2021 GO-2022-0611 +14 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.4
Aug 25, 2021 GO-2022-0611 +15 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.3
Jun 14, 2021 GO-2022-0611 +16 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.2
May 19, 2021 GO-2022-0611 +16 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.1
Apr 20, 2021 GO-2022-0611 +17 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.0
Mar 24, 2021 GO-2022-0611 +17 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Changes in this version
type Telemetry
v1.7.0-rc2
Mar 16, 2021 GO-2022-0611 +15 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.7.0-rc1
Mar 10, 2021 GO-2022-0611 +15 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.6.7
Sep 28, 2021 GO-2022-0611 +15 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.6.6
Aug 24, 2021 GO-2022-0611 +15 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.6.5
May 19, 2021 GO-2022-0611 +16 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.6.4
Apr 20, 2021 GO-2022-0611 +17 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Changes in this version
type Listener
v1.6.3
Feb 24, 2021 GO-2022-0611 +17 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.6.2
Jan 28, 2021 GO-2022-0611 +17 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.6.1
Dec 15, 2020 GO-2022-0611 +18 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2509: Improper Authentication in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.6.0
Nov 10, 2020 GO-2022-0611 +19 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2063: HashiCorp Vault Improper Input Validation vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2508: Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2509: Improper Authentication in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.6.0-rc
Nov 2, 2020 GO-2022-0611 +15 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.5.9
May 19, 2021 GO-2022-0611 +15 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.5.8
Apr 19, 2021 GO-2022-0611 +16 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Changes in this version
type Listener
v1.5.7
Jan 27, 2021 GO-2022-0611 +16 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.5.6
Dec 14, 2020 GO-2022-0611 +16 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.5.5
Oct 21, 2020 GO-2022-0611 +17 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2508: Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.5.4
Sep 23, 2020 GO-2022-0611 +17 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2508: Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.5.3
Aug 26, 2020 GO-2022-0611 +18 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2508: Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2514: Token leases could outlive their TTL in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.5.2
Aug 20, 2020 GO-2022-0611 +18 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2508: Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2514: Token leases could outlive their TTL in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.5.1
Aug 19, 2020 GO-2022-0611 +18 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2508: Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2514: Token leases could outlive their TTL in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
v1.5.0
Jul 18, 2020 GO-2022-0611 +20 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2022-0825: Authentication Bypass by Spoofing and Insufficient Verification of Data Authenticity in Hashicorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2488: HashiCorp Vault Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2508: Enumeration of users in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2514: Token leases could outlive their TTL in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault
Changes in this version
v1.5.0-rc
Jul 10, 2020 GO-2022-0611 +17 more
Alert  GO-2022-0611: HashiCorp Vault Incorrect Permission Assignment for Critical Resource in github.com/hashicorp/vault
Alert  GO-2022-0618: Hashicorp Vault Privilege Escalation Vulnerability in github.com/hashicorp/vault
Alert  GO-2022-0620: HashiCorp Vault underlying database had excessively broad filesystem permissions from v1.4.0 until v1.8.0 in github.com/hashicorp/vault
Alert  GO-2022-0623: Invalid session token expiration in github.com/hashicorp/vault
Alert  GO-2022-0632: Improper Removal of Sensitive Information Before Storage or Transfer in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2023-1685: HashiCorp Vault’s Microsoft SQL Database Storage Backend Vulnerable to SQL Injection Via Configuration File in github.com/hashicorp/vault
Alert  GO-2023-1708: HashiCorp Vault's PKI mount vulnerable to denial of service in github.com/hashicorp/vault
Alert  GO-2023-1709: Cache-timing attacks in Shamir's secret sharing in github.com/hashicorp/vault
Alert  GO-2023-1849: Hashicorp Vault vulnerable to Cross-site Scripting in github.com/hashicorp/vault
Alert  GO-2023-1897: HashiCorp Vault's revocation list not respected in github.com/hashicorp/vault
Alert  GO-2023-1900: Hashicorp Vault Fails to Verify if Approle SecretID Belongs to Role During a Destroy Operation in github.com/hashicorp/vault
Alert  GO-2023-1986: HashiCorp Vault and Vault Enterprise vulnerable to user enumeration in github.com/hashicorp/vault
Alert  GO-2023-2088: Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault
Alert  GO-2023-2329: HashiCorp Vault Missing Release of Memory after Effective Lifetime vulnerability in github.com/hashicorp/vault
Alert  GO-2024-2514: Token leases could outlive their TTL in HashiCorp Vault in github.com/hashicorp/vault
Alert  GO-2024-2617: Authentication bypass in github.com/hashicorp/vault
Alert  GO-2024-2690: HashiCorpVault does not correctly validate OCSP responses in github.com/hashicorp/vault
Alert  GO-2024-2921: HashiCorp Vault Incorrectly Validated JSON Web Tokens (JWT) Audience Claims in github.com/hashicorp/vault

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.