CVE-2020-16250

Published: 2020-08-26T15:15Z

Last Modified: 2024-11-21T05:07Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

HashiCorp Vault and Vault Enterprise versions 0.7.1 and newer, when configured with the AWS IAM auth method, may be vulnerable to authentication bypass. Fixed in 1.2.5, 1.3.8, 1.4.4, and 1.5.1.. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt