Back to bug 2189760
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Avinash Hanwate | 2023-04-26 05:24:17 UTC | CC | amctagga, jcantril, mrajanna, muagarwa, nbecker, ocs-bugs, periklis, tnielsen | |
| Product Security DevOps Team | 2023-04-26 12:11:48 UTC | Status | NEW | CLOSED |
| Resolution | --- | NOTABUG | ||
| Last Closed | 2023-04-26 12:11:48 UTC | |||
| Avinash Hanwate | 2023-07-11 06:39:26 UTC | Doc Text | HashiCorp Vault Enterprise could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw in the tokenization transform feature. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to obtain tokenization key. | |
| RaTasha Tillery-Smith | 2023-07-11 14:05:53 UTC | Doc Text | HashiCorp Vault Enterprise could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw in the tokenization transform feature. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to obtain tokenization key. | A flaw was found in HashiCorp Vault Enterprise. This flaw allows a remote, authenticated attacker to obtain sensitive information caused by a vulnerability in the tokenization transform feature. A remote attacker can obtain the tokenization key by sending a specially-crafted request. |
Back to bug 2189760