CVE-2023-3775
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Sep 29, 2023
Updated: Oct 2, 2023
CWE ID 798
Summary
CVE-2023-3775 is a vulnerability affecting Vault Enterprise Sentinel's Role Governing Policy. This issue allows a policy created to restrict access in one namespace to be applied inadvertently to requests in a non-descendant namespace, potentially causing a denial of service. This vulnerability has been addressed in Vault Enterprise versions 1.15.0, 1.14.4, and 1.13.8.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- I-doit
Affected Vendors
- Idoit