VDB
CVE-2023-25000
CVE-2023-25000
PUBLISHED
HashiCorp Vault's implementation of Shamir's secret sharing used precomputed table lookups, and was vulnerable to cache-timing attacks. An attacker with access to, and the ability to observe a large number of unseal operations on the host through a side channel may reduce the search space of a brute force effort to recover the Shamir shares. Fixed in Vault 1.13.1, 1.12.5, and 1.11.9.
EPSS 0.05% · 14.6th percentile
Risk Scores
EPSS Score
0.05%
14.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | vault | 0, 1.12.0, 1.13.0 |
| Bitnami | vault | 1.13.0, 1.12.0, 0 |
Exploit Intelligence
- https://discuss.hashicorp.com/t/hcsec-2023-10-vault-vulnerable-to-cache-timing-attacks-during-seal-and-unseal-operations/52078 (circl)
- https://security.netapp.com/advisory/ntap-20230526-0008/ (circl)
- cve_version_check.go (github-poc)
- cve_version_check.go (github-poc)
- cve_version_check.go (github-poc)
- cve_version_check.go (github-poc)
- cve_version_check.go (github-poc)
- cve_version_check.go (github-poc)
- cve_version_check.go (github-poc)
- cve_version_check.go (github-poc)
…and 12 more exploits
Timeline
- Mar 29, 2023 CVE Published
- Mar 30, 2023 EPSS Score
- Apr 7, 2023 CVE Updated
- May 7, 2023 EPSS Score
- Jun 14, 2023 EPSS Score
- Jul 23, 2023 EPSS Score
- Aug 30, 2023 EPSS Score
- Oct 7, 2023 EPSS Score
- Nov 14, 2023 EPSS Score
- Dec 22, 2023 EPSS Score
- Jan 29, 2024 EPSS Score
- Mar 8, 2024 EPSS Score