Vulnerabilities > CVE-2024-9180 - Unspecified vulnerability in Hashicorp Vault

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

hashicorp

NVD

Published: 2024-10-10

Updated: 2024-10-18

Summary

A privileged Vault operator with write permissions to the root namespace’s identity endpoint could escalate their own or another user’s privileges to Vault’s root policy. Fixed in Vault Community Edition 1.18.0 and Vault Enterprise 1.18.0, 1.17.7, 1.16.11, and 1.15.16.

Vulnerable Configurations

Part	Description	Count
Application	Hashicorp Hashicorp Vault 1.7.7 Hashicorp Vault 1.7.8 Hashicorp Vault 1.7.9 Hashicorp Vault 1.7.10 Hashicorp Vault 1.8.0 Hashicorp Vault 1.8.3 Hashicorp Vault 1.8.4 Hashicorp Vault 1.8.6 Hashicorp Vault 1.8.7 Hashicorp Vault 1.8.8 Hashicorp Vault 1.8.9 Hashicorp Vault 1.9.0 Hashicorp Vault 1.9.1 Hashicorp Vault 1.9.2 Hashicorp Vault 1.9.3 Hashicorp Vault 1.9.4 Hashicorp Vault 1.9.10 Hashicorp Vault 1.10.0 Hashicorp Vault 1.10.2 Hashicorp Vault 1.10.3 Hashicorp Vault 1.10.7 Hashicorp Vault 1.10.11 Hashicorp Vault 1.11.0 Hashicorp Vault 1.11.3 Hashicorp Vault 1.11.4 Hashicorp Vault 1.11.8 Hashicorp Vault 1.12.0 Hashicorp Vault 1.12.4 Hashicorp Vault 1.13.0 Hashicorp Vault 1.13.5 Hashicorp Vault 1.13.7 Hashicorp Vault 1.13.10 Hashicorp Vault 1.14.0 Hashicorp Vault 1.14.6 Hashicorp Vault 1.15.0 Hashicorp Vault 1.15.2 Hashicorp Vault 1.15.3 Hashicorp Vault 1.15.4 Hashicorp Vault 1.15.5 Hashicorp Vault 1.15.6 Hashicorp Vault 1.16.0 Hashicorp Vault 1.16.1 Hashicorp Vault 1.16.2 Hashicorp Vault 1.16.3 Hashicorp Vault 1.17.0 Hashicorp Vault 1.17.1 Hashicorp Vault 1.17.2 Hashicorp Vault 1.17.3 Hashicorp Vault 1.17.4 Hashicorp Vault 1.17.5 Hashicorp Vault 1.17.6 Hashicorp Vault 1.12.8 Hashicorp Vault 1.12.11 Hashicorp Vault 1.13.4 Hashicorp Vault 1.13.8 Hashicorp Vault 1.14.3 Hashicorp Vault 1.14.4 Hashicorp Vault 1.14.11 Hashicorp Vault 1.14.12 Hashicorp Vault 1.14.13 Hashicorp Vault 1.15.7 Hashicorp Vault 1.15.8 Hashicorp Vault 1.15.9 Hashicorp Vault 1.15.10 Hashicorp Vault 1.15.11 Hashicorp Vault 1.15.12 Hashicorp Vault 1.15.13 Hashicorp Vault 1.15.14 Hashicorp Vault 1.15.15 Hashicorp Vault 1.15.16 Hashicorp Vault 1.16.4 Hashicorp Vault 1.16.5 Hashicorp Vault 1.16.6 Hashicorp Vault 1.16.7 Hashicorp Vault 1.16.8 Hashicorp Vault 1.16.9 Hashicorp Vault 1.16.10 Hashicorp Vault 1.16.11 Hashicorp Vault 1.17.7	129

References

https://discuss.hashicorp.com/t/hcsec-2024-21-vault-operators-in-root-namespace-may-elevate-their-privileges/70565