CVE-2023-3462

MEDIUM5.3EPSS 0.97%

HashiCorp Vault and Vault Enterprise vulnerable to user enumeration

發布日:2023/8/1修改日:2026/2/4

描述

HashiCorp's Vault and Vault Enterprise are vulnerable to user enumeration when using the LDAP auth method. An attacker may submit requests of existent and non-existent LDAP users and observe the response from Vault to check if the account is valid on the LDAP server. This vulnerability is fixed in Vault 1.14.1 and 1.13.5.

受影響套件(3)

Bitnami/vault>= 1.13.0, < 1.13.5, >= 1.14.0, < 1.14.1
Go/github.com/hashicorp/vaultfrom 0, < 1.13.5
Go/github.com/hashicorp/vaultfrom 0, < 1.13.5, >= 1.14.0, < 1.14.1

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	MEDIUM5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

參考連結(4)

ADVISORYhttps://github.com/advisories/GHSA-9v3w-w2jh-4hff
ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2023-3462
PATCHhttps://github.com/hashicorp/vault
WEBhttps://discuss.hashicorp.com/t/hcsec-2023-24-vaults-ldap-auth-method-allows-for-user-enumeration/56714