Back to bug 2228020
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Borja Tarraso | 2023-08-01 07:28:03 UTC | Depends On | 2228025, 2228023, 2228026, 2228024 | |
| Avinash Hanwate | 2023-08-01 14:57:46 UTC | Doc Text | A flaw was found in the HashiCorp Vault. The Vault and Vault Enterprise (“Vault”) LDAP auth method allows unauthenticated users to potentially enumerate valid accounts in the configured LDAP system by observing the response error when querying usernames. | |
| Alias | TRIAGE-CVE-2023-3462 | CVE-2023-3462 | ||
| Avinash Hanwate | 2023-08-01 14:58:35 UTC | Summary | TRIAGE-CVE-2023-3462 Hashicorp/vault: Vault’s LDAP Auth Method Allows for User Enumeration | CVE-2023-3462 Hashicorp/vault: Vault’s LDAP Auth Method Allows for User Enumeration |
| Red Hat Bugzilla | 2023-08-03 08:31:06 UTC | CC | ocs-bugs |
Back to bug 2228020