CVE-2024-5798 | HashiCorp Vault/Vault Enterprise JSON Web Token improper authorization

Inserito da Angelo Barbosa | Giu 12, 2024 | CVE

A vulnerability has been found in HashiCorp Vault and Vault Enterprise and classified as problematic. This vulnerability affects unknown code of the component JSON Web Token Handler. The manipulation leads to improper authorization.

This vulnerability was named CVE-2024-5798. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5798 | HashiCorp Vault/Vault Enterprise JSON Web Token improper authorization

Post correlati

CVE-2024-5622 | B&R Industrial Automation B&R APROL up to R 4.2-07P3/R 4.4-00P3 unnecessary privileges

CVE-2024-41655 | danocmx node-tf2-item-format up to 5.9.13 redos (GHSA-8h55-q5qq-p685)

CVE-2023-52137 | tj-actions verify-changed-files up to 16.x input validation (GHSA-ghm2-rq8q-wrhc)

CVE-2024-8083 | SourceCodester Online Computer and Laptop Store 1.0 Master.php id sql injection