CVE-2023-24999
Vault Fails to Verify if the AppRole SecretID Belongs to Role During a Destroy Operation
8.1
HIGH
CVSS 3.1
EPSS 0.18%
Description
HashiCorp Vault and Vault Enterprise’s approle auth method allowed any authenticated user with access to an approle destroy endpoint to destroy the secret ID of any other role by providing the secret ID accessor. This vulnerability is fixed in Vault 1.13.0, 1.12.4, 1.11.8, 1.10.11 and above.
How to fix CVE-2023-24999
To remediate CVE-2023-24999, upgrade the affected package to a fixed version below.
- —upgrade to 1.10.11 or later
- —upgrade to 1.10.11 or later
- —upgrade to 1.10.11 or later
Is CVE-2023-24999 being exploited?
Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.
Affected packages (3)
- from 0, < 1.10.11, >= 1.11.0, < 1.11.8, >= 1.12.0, < 1.12.4
- from 0, < 1.10.11
- from 0, < 1.10.11, >= 1.11.0, < 1.11.8, >= 1.12.0, < 1.12.4
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.1 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |