CVE-2023-2121

Published: 2023-06-09T17:15Z

Last Modified: 2024-11-21T07:57Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Vault and Vault Enterprise's (Vault) key-value v2 (kv-v2) diff viewer allowed HTML injection into the Vault web UI through key values. This vulnerability, CVE-2023-2121, is fixed in Vault 1.14.0, 1.13.3, 1.12.7, and 1.11.11. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt