Moderate severityNVD Advisory· Published Mar 30, 2023· Updated Feb 13, 2025
Vault Vulnerable to Cache-Timing Attacks During Seal and Unseal Operations
CVE-2023-25000
Description
HashiCorp Vault's implementation of Shamir's secret sharing used precomputed table lookups, and was vulnerable to cache-timing attacks. An attacker with access to, and the ability to observe a large number of unseal operations on the host through a side channel may reduce the search space of a brute force effort to recover the Shamir shares. Fixed in Vault 1.13.1, 1.12.5, and 1.11.9.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/hashicorp/vaultGo | < 1.11.9 | 1.11.9 |
github.com/hashicorp/vaultGo | >= 1.12.0, < 1.12.5 | 1.12.5 |
github.com/hashicorp/vaultGo | >= 1.13.0, < 1.13.1 | 1.13.1 |
Affected products
22- osv-coords20 versionspkg:apk/chainguard/k3dpkg:apk/chainguard/k3d-proxypkg:apk/chainguard/k3d-toolspkg:apk/chainguard/vault-1.14pkg:apk/chainguard/vault-1.14-compatpkg:apk/chainguard/vault-1.14-entrypointpkg:apk/chainguard/vault-1.16pkg:apk/chainguard/vault-1.16-compatpkg:apk/chainguard/vault-fips-1.14pkg:apk/chainguard/vault-fips-1.14-compatpkg:apk/chainguard/vault-fips-1.16pkg:apk/chainguard/vault-fips-1.16-compatpkg:apk/wolfi/k3dpkg:apk/wolfi/k3d-proxypkg:apk/wolfi/k3d-toolspkg:apk/wolfi/vault-1.14pkg:apk/wolfi/vault-1.14-compatpkg:apk/wolfi/vault-1.14-entrypointpkg:bitnami/vaultpkg:golang/github.com/hashicorp/vault
< 5.6.0-r11+ 19 more
- (no CPE)range: < 5.6.0-r11
- (no CPE)range: < 5.6.0-r11
- (no CPE)range: < 5.6.0-r11
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 5.6.0-r11
- (no CPE)range: < 5.6.0-r11
- (no CPE)range: < 5.6.0-r11
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 1.11.9
- (no CPE)range: < 1.11.9
- Range: 1.13.0
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-vq4h-9ghm-qmrrghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-25000ghsaADVISORY
- discuss.hashicorp.com/t/hcsec-2023-10-vault-vulnerable-to-cache-timing-attacks-during-seal-and-unseal-operations/52078ghsaWEB
- github.com/hashicorp/vault/pull/19495ghsaWEB
- security.netapp.com/advisory/ntap-20230526-0008ghsaWEB
- security.netapp.com/advisory/ntap-20230526-0008/mitre
News mentions
0No linked articles in our index yet.