CVE-2022-25243

Name
CVE-2022-25243
Description
"Vault and Vault Enterprise 1.8.0 through 1.8.8, and 1.9.3 allowed the PKI secrets engine under certain configurations to issue wildcard certificates to authorized users for a specified domain, even if the PKI role policy attribute allow_subdomains is set to false. Fixed in Vault Enterprise 1.8.9 and 1.9.4.
NVD Severity
medium
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://discuss.hashicorp.com/t/hcsec-2022-09-vault-pki-secrets-engine-policy-results-in-incorrect-wildcard-certificate-issuance/36600
MISC https://discuss.hashicorp.com
Third Party Advisory https://security.gentoo.org/glsa/202207-01

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:hashicorp:vault:*:*:*:*:-:*:*:* vault >= 1.8.0 < 1.8.9
cpe:2.3:a:hashicorp:vault:*:*:*:*:-:*:*:* vault >= 1.9.0 < 1.9.4

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
vault edge-community 1.9.4-r0 Gennady Feldman <gena01@gmail.com> fixed
vault 3.18-community 1.9.4-r0 None fixed
vault 3.17-community 1.9.4-r0 None fixed