CVE-2021-32074

HashiCorp vault-action (aka Vault GitHub Action) before 2.2.0 allows attackers to obtain sensitive information from log files because a multi-line secret was not correctly registered with GitHub Actions for log masking.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:hashicorp:vault-action:*:*:*:*:*:*:*:*

Information

Published : 2021-05-06 22:15

Updated : 2021-05-14 14:13


NVD link : CVE-2021-32074

Mitre link : CVE-2021-32074


JSON object : View

CWE
CWE-532

Insertion of Sensitive Information into Log File

Advertisement

dedicated server usa

Products Affected

hashicorp

  • vault-action