Input validation error in Vault

#VU47911 Input validation error in Vault

Published: 2020-09-30 | Updated: 2020-10-26

Vulnerability identifier: #VU47911

Vulnerability risk: High

CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-25816

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Vault
Web applications / Modules and components for CMS

Vendor: HashiCorp

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

HashiCorp Vault and Vault Enterprise versions 1.0 and newer allowed leases created with a batch token to outlive their TTL because expiration time was not scheduled correctly. Fixed in 1.4.7 and 1.5.4.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Vault: 1.5.0 - 1.5.3

External links
http://github.com/hashicorp/vault/blob/master/CHANGELOG.md#154
http://www.hashicorp.com/blog/category/vault

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Input validation error in vault (Alpine package)

Input validation error in HashiCorp Vault