CVE-2023-2197: Vault Enterprise Vulnerable to Padding Oracle Attacks When Using a CBC-based Encryption Mechanism with a HSM
First published: Mon May 01 2023(Updated: )
HashiCorp Vault Enterprise 1.13.0 up to 1.13.1 is vulnerable to a padding oracle attack when using an HSM in conjunction with the CKM_AES_CBC_PAD or CKM_AES_CBC encryption mechanisms. An attacker with privileges to modify storage and restart Vault may be able to intercept or modify cipher text in order to derive Vault’s root key. Fixed in 1.13.2
Credit: security@hashicorp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HashiCorp Vault | >=1.13.0<1.13.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2023-2197.
What is the severity of CVE-2023-2197?
The severity of CVE-2023-2197 is low with a score of 2.5.
Which version of HashiCorp Vault Enterprise is affected by CVE-2023-2197?
HashiCorp Vault Enterprise versions 1.13.0 up to 1.13.1 are affected by CVE-2023-2197.
What is the attack method for CVE-2023-2197?
CVE-2023-2197 is a padding oracle attack when using an HSM in conjunction with the CKM_AES_CBC_PAD or CKM_AES_CBC encryption mechanisms.
How can an attacker exploit CVE-2023-2197?
An attacker with privileges to modify storage and restart Vault may be able to intercept or modify ciphertext in the attack.
- collector/nvd-latest
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/title
- agent/severity
- agent/weakness
- agent/tags
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- vendor/hashicorp
- canonical/hashicorp vault
- version/hashicorp vault/1.13.0