HashiCorp Vault and Vault Enterprise transit secrets engine allowed authorized users to specify arbitrary nonces, even with convergent encryption disabled. The encrypt endpoint, in combination with an offline attack, could be used to decrypt arbitrary ciphertext and potentially derive the authentication subkey when using transit secrets engine without convergent encryption. Introduced in 1.6.0 and fixed in 1.14.3, 1.13.7, and 1.12.11.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: HashiCorp
Published: 2023-09-14T23:06:24.546Z
Updated: 2023-09-14T23:06:24.546Z
Reserved: 2023-08-31T15:50:09.764Z
Link: CVE-2023-4680
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-15T00:15:07.967
Modified: 2023-09-20T14:55:39.430
Link: CVE-2023-4680
JSON object: View
Redhat Information
No data.
CWE