HashiCorp Vault vulnerability could lead to RCE, patch today! (CVE-2023-0620)

12 April 2023

Oxeye discovered a new vulnerability (CVE-2023-0620) in the HashiCorp Vault Project, an identity-based secrets and encryption management system that controls access to API encryption keys, passwords, and certificates. The vulnerability was an SQL injection vulnerability that potentially could lead to a Remote Code Execution (RCE).

Read full article on Help Net Security

Date:

12 April 2023

Categorie(s):

NEWS

Tag(s):

HashiCorp, IT, Open Source, Open Source Software, Oxeye

Gmail’s New Shielded Email Feature Lets Users Create Aliases for Email Privacy18 November 2024
THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 11 – Nov 17)18 November 2024
These passwords get you hacked: 15 rules to follow18 November 2024
Gmail’s spam solution will have you using email aliases18 November 2024
Mozilla 0Din Warns of ChatGPT Sandbox Flaws Enabling Python Execution18 November 2024