GHSA-6c5r-4wfc-3mcx
Suggest an improvement- Source
- https://github.com/advisories/GHSA-6c5r-4wfc-3mcx
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/08/GHSA-6c5r-4wfc-3mcx/GHSA-6c5r-4wfc-3mcx.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-6c5r-4wfc-3mcx
- Aliases
- Downstream
- Published
- 2025-08-01T18:31:19Z
- Modified
- 2025-08-11T18:14:37.949100Z
- Severity
-
- 6.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- Hashicorp Vault has Incorrect Validation for Non-CA Certificates
- Details
-
Vault and Vault Enterprise (“Vault”) TLS certificate auth method did not correctly validate client certificates when configured with a non-CA certificate as [+trusted certificate+|https://developer.hashicorp.com/vault/api-docs/auth/cert#certificate]. In this configuration, an attacker may be able to craft a malicious certificate that could be used to impersonate another user. Fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23.
- Database specific
{ "github_reviewed": true, "cwe_ids": [ "CWE-295" ], "severity": "MODERATE", "github_reviewed_at": "2025-08-01T21:09:19Z", "nvd_published_at": "2025-08-01T18:15:57Z" }- References
Affected packages
Go / github.com/hashicorp/vault
Package
- Name
- github.com/hashicorp/vault
- View open source insights on deps.dev
- Purl
- pkg:golang/github.com/hashicorp/vault