VDB

GO-2024-3162

GO-2024-3162 PUBLISHED

Vault SSH Secrets Engine Configuration Did Not Restrict Valid Principals By Default in github.com/hashicorp/vault

Affected Products

VendorProductVersions
github.comhashicorp/vault1.7.7, 1.7.7

Timeline

  • Oct 9, 2024 CVE Published
  • Feb 4, 2026 CVE Updated
  • May 1, 2026 Security Advisory

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›