CVE-2020-10661: HashiCorp Vault Improper Privilege Management
9.1
CVSS Score
3.1
Basic Information
CVE ID
GHSA ID
EPSS Score
0.57984%
CWE
Published
1/30/2024
Updated
9/16/2024
KEV Status
No
Technology
Go
Technical Details
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
---|---|---|---|
github.com/hashicorp/vault | go | >= 0.11.0, < 1.3.4 | 1.3.4 |
Vulnerability Intelligence
Miggo AI
Root Cause Analysis
The vulnerability stems from improper group membership cleanup during authentication flows. Key changes in expiration.go and request_handling.go show the removal of conditional checks around group alias validation, indicating these were points where stale permissions could persist. The LDAP test helper change (GroupAttr from memberOf->cn) and added test cases in identity_test.go further validate that group membership tracking was central to the privilege escalation issue.