CVE-2023-3775

MEDIUM

Vault 0.11.0-1.13.7 - Denial of Service via Sentinel Role Governing Policy

Title source: llm

Description

A Vault Enterprise Sentinel Role Governing Policy created by an operator to restrict access to resources in one namespace can be applied to requests outside in another non-descendant namespace, potentially resulting in denial of service. Fixed in Vault Enterprise 1.15.0, 1.14.4, 1.13.8.

References (1)

Core 1

Core References

Vendor Advisory

https://discuss.hashicorp.com/t/hcsec-2023-29-vault-enterprise-s-sentinel-rgp-policies-allowed-for-cross-namespace-denial-of-service/58653

Scores

CVSS v3 4.2

EPSS 0.0040

EPSS Percentile 60.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-266

Status published

Products (1)

hashicorp/vault 0.11.0 - 1.13.8

Published Sep 29, 2023

Tracked Since Feb 18, 2026