Описание
Vault and Vault Enterprise’s (“Vault”) TOTP Secrets Engine code validation endpoint is susceptible to code reuse within its validity period. Fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23.
EPSS
Процентиль: 7%
0.00031
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-156
Связанные уязвимости
CVSS3: 6.5
redhat
5 дней назад
Vault and Vault Enterprise’s (“Vault”) TOTP Secrets Engine code validation endpoint is susceptible to code reuse within its validity period. Fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23.
CVSS3: 6.5
github
5 дней назад
Hashicorp Vault's TOTP Secrets Engine Susceptible to Code Reuse
EPSS
Процентиль: 7%
0.00031
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-156