Boundary and Boundary Enterprise (“Boundary”) is vulnerable to session hijacking through TLS certificate tampering. An attacker with privileges to enumerate active or pending sessions, obtain a private key pertaining to a session, and obtain a valid trust on first use (TOFU) token may craft a TLS certificate to hijack an active session and gain access to the underlying service or application.
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:HHashicorp Boundary
APPHashicorp0.8.0 – 0.15.0 (bez)
Related vulnerabilities
HashiCorp Boundary up to 0.10.1 did not properly perform data integrity checks to ensure the resources were as...
Boundary Community Edition and Boundary Enterprise (“Boundary”) incorrectly handle HTTP requests during the in...
HashiCorp Boundary from 0.10.0 through 0.11.2 contain an issue where when using a PKI-based worker with a Key ...
Hashicorp Boundary v0.8.0 is vulnerable to Clickjacking which allow for the interception of login credentials,...
HashiCorp Vault: RCE przez uprzywilejowanego operatora via sys/audit