CVE-2023-4680 — Vulnetix

CVE-2023-4680 PUBLISHED

HashiCorp Vault and Vault Enterprise transit secrets engine allowed authorized users to specify arbitrary nonces, even with convergent encryption disabled. The encrypt endpoint, in combination with an offline attack, could be used to decrypt arbitrary ciphertext and potentially derive the authentication subkey when using transit secrets engine without convergent encryption. Introduced in 1.6.0 and fixed in 1.14.3, 1.13.7, and 1.12.11.

EPSS 1.52% · 81.6th percentile

Risk Scores

EPSS Score

1.52%

81.6th percentile

Affected Products

Vendor	Product	Versions
Bitnami	vault	1.6.0, 1.13.0, 1.14.0
Bitnami	vault	1.13.0, 1.14.0, 1.6.0

Timeline

Sep 14, 2023 CVE Published
Sep 15, 2023 EPSS Score
Mar 17, 2025 EPSS Score
Apr 15, 2025 EPSS Score
May 1, 2025 EPSS Score
May 4, 2025 EPSS Score
Jun 1, 2025 EPSS Score
Jun 5, 2025 EPSS Score
Jul 1, 2025 EPSS Score
Jul 30, 2025 EPSS Score
Aug 1, 2025 EPSS Score
Aug 4, 2025 EPSS Score

References

https://discuss.hashicorp.com/t/hcsec-2023-28-vault-s-transit-secrets-engine-allowed-nonce-specified-without-convergent-encryption/58249 url
https://nvd.nist.gov/vuln/detail/CVE-2023-4680 url

Open in Interactive Console →