Vulnerabilidades em HashiCorp
93 resultadosCVE-2025-3744HIGHNomad Vulnerable To Violation Of Mandatory Sentinel Policies in Nomad Job Submissions via Policy OverrideEPSS 0.2%CVE-2023-5834LOWVagrant’s Windows Installer Allowed Directory Junction WriteEPSS 0.2%CVE-2025-4656LOWVault Vulnerable to Recovery Key Cancellation Denial of ServiceEPSS 0.2%CVE-2025-6037MEDIUMVault Certificate Auth Method Did Not Validate Common Name For Non-CA CertificatesEPSS 0.2%CVE-2023-25000MEDIUMVault Vulnerable to Cache-Timing Attacks During Seal and Unseal OperationsEPSS 0.2%CVE-2026-7776HIGHBoundary Workers Vulnerable to Denial of Service During TLS HandshakeEPSS 0.2%CVE-2026-6959MEDIUMNomad vulnerable to arbitrary file read/write on client host through symlink attackEPSS 0.2%CVE-2024-2877MEDIUMVault Enterprise Leaks Sensitive HTTP Request Headers in the Audit Log When Deployed With a Performance Standby NodeEPSS 0.2%CVE-2025-13432MEDIUMTerraform Enterprise state versions can be created by users with specific permissions without sufficient write accessEPSS 0.2%CVE-2024-10228LOWVagrant VMWare Utility installation files vulnerable to modification by unprivileged userEPSS 0.1%CVE-2026-8052MEDIUMNomad's exec2 task driver vulnerable to arbitrary file read/write on client host through symlink attackEPSS 0.1%CVE-2026-5061MEDIUMConsul-template vulnerable to sandbox path bypass in file helper via a symlink attackEPSS 0.1%CVE-2023-2197LOWVault Enterprise Vulnerable to Padding Oracle Attacks When Using a CBC-based Encryption Mechanism with a HSMEPSS 0.1%