-
CVSS Score
-Basic Information
CVE ID
-
GHSA ID
-
EPSS Score
-
CWE
-
Published
-
Updated
-
KEV Status
-
Technology
-
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AIMiggo AIRoot Cause AnalysisThe vulnerability stems from unauthenticated endpoints (/issuer/:ref/{json,der,pem}) that handle issuer metadata operations. These functions correspond to the documented attack vectors:-
GoGo| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| github.com/hashicorp/vault | go | < 1.11.9 | 1.11.9 |
| github.com/hashicorp/vault | go | >= 1.12.0, < 1.12.5 | 1.12.5 |
| github.com/hashicorp/vault | go | >= 1.13.0, < 1.13.1 | 1.13.1 |
Ongoing coverage of React2Shell