Security Advisory

CVE-2021-38553

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-13 15:48:47
Last updated 2024-08-04 01:44:23
Assigner mitre
State PUBLISHED

Description

HashiCorp Vault and Vault Enterprise 1.4.0 through 1.7.3 initialized an underlying database file associated with the Integrated Storage feature with excessively broad filesystem permissions. Fixed in Vault and Vault Enterprise 1.8.0.