Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2024-7594

Good to know:

icon

Date: September 26, 2024

Vault’s SSH secrets engine did not require the valid_principals list to contain a value by default. If the valid_principals and default_user fields of the SSH secrets engine configuration are not set, an SSH certificate requested by an authorized user to Vault’s SSH secrets engine could be used to authenticate as any user on the host. Fixed in Vault Community Edition 1.17.6, and in Vault Enterprise 1.17.6, 1.16.10, and 1.15.15.

Language: Go

Severity Score

Related Resources (11)

https://nvd.nist.gov/vuln/detail/CVE-2024-7594
https://github.com/hashicorp/vault
https://openbao.org/docs/release-notes/2-0-0/#202
https://security.netapp.com/advisory/ntap-20250110-0007
https://github.com/openbao/openbao/commit/d5b4e922469830ac335b21dc0e8f9878c501a884
https://discuss.hashicorp.com/t/hcsec-2024-20-vault-ssh-secrets-engine-configuration-did-not-restrict-valid-principals-by-default/70251
https://security.netapp.com/advisory/ntap-20250110-0007/
https://github.com/advisories/GHSA-jg74-mwgw-v6x3
https://pkg.go.dev/vuln/GO-2024-3162
https://github.com/openbao/openbao/pull/561
https://www.mend.io/vulnerability-database/CVE-2024-7594

Severity Score

Weakness Type (CWE)

Incorrect Permission Assignment for Critical Resource

CWE-732

Top Fix

icon

Upgrade Version

Upgrade to version github.com/hashicorp/vault - v1.17.6;github.com/openbao/openbao - v0.0.0-20241003222810-d5b4e9224698

Learn More

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): HIGH
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

Do you need more information?

Contact Us