High severityNVD Advisory· Published Oct 10, 2024· Updated Nov 8, 2024

Vault Operators in Root Namespace May Elevate Their Privileges

CVE-2024-9180

Description

A privileged Vault operator with write permissions to the root namespace’s identity endpoint could escalate their own or another user’s privileges to Vault’s root policy. Fixed in Vault Community Edition 1.18.0 and Vault Enterprise 1.18.0, 1.17.7, 1.16.11, and 1.15.16.

Affected packages

Versions sourced from the GitHub Security Advisory.

Package	Affected versions	Patched versions
github.com/hashicorp/vaultGo	< 1.18.0	1.18.0
github.com/openbao/openbaoGo	< 2.0.3	2.0.3

Affected products

Hashicorp/Vaultv5
Range: 0.10.4
HashiCorp/Vault Enterprisev5
Range: 0.10.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/advisories/GHSA-rr8j-7w34-xp5jghsaADVISORY
nvd.nist.gov/vuln/detail/CVE-2024-9180ghsaADVISORY
discuss.hashicorp.com/t/hcsec-2024-21-vault-operators-in-root-namespace-may-elevate-their-privileges/70565ghsaWEB
openbao.org/docs/release-notes/2-0-0/ghsaWEB
pkg.go.dev/vuln/GO-2024-3191ghsaWEB

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000