CGA-4832-gcg9-6mhj

Published

Last updated

https://images.chainguard.dev/security/CGA-4832-gcg9-6mhj

Package

vault-1.14

Repository

Chainguard

Latest Update

Not affected

Aliases

CVE-2024-2048
GHSA-r3w7-mfpm-c2vw

Severity

9.8

Critical

CVSS V3

References

https://nvd.nist.gov/vuln/detail/CVE-2024-2048
https://github.com/advisories/GHSA-r3w7-mfpm-c2vw

Updates

Status

Not affected

Justification

Vulnerable code not present

Impact

This vulnerability was matched to the module "github.com/hashicorp/vault" at the following location(s): /usr/bin/vault. In all cases, the fixed version of the module (git commit 7d15950da2e3d835077f5b896354de5c01f27570) is an ancestor of the installed version commit (c93b26fd708f1af00e3862df942aff8296d47bf6).

Status

Under investigation

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

The trusted source for open source

Talk to an expert

Privacy

Terms

CGA-4832-gcg9-6mhj

Severity

References

Updates

The trusted source for open source

Product

Solutions

Customers

Resources

Company