Hashicorp: >> Vault >> 1.5.6 Security Vulnerabilities
HashiCorp Vault and Vault Enterprise allowed for enumeration of Secrets Engine mount paths via unauthenticated HTTP requests. Fixed in 1.6.2 & 1.5.7.
CVSS Score
5.3
EPSS Score
0.004
Published
2021-02-01
Page 3