CVE Vulnerability
CVE-2021-27400
HashiCorp Vault and Vault Enterprise Cassandra integrations (storage backend and database secrets engine plugin) did not validate TLS certificates when connecting to Cassandra clusters. Fixed in 1.6.4 and 1.7.1
References
| Link | Resource |
|---|---|
| https://discuss.hashicorp.com/t/hcsec-2021-10-vault-s-cassandra-integrations-did-not-validate-tls-certificates/23463 | Vendor Advisory |
Configurations
Configuration 1
|
Information
Published : 2021-04-22 05:15
Updated : 2021-04-27 08:36
NVD link : CVE-2021-27400
Mitre link : CVE-2021-27400
Products Affected
No products.
CWE
CWE-295
Improper Certificate Validation