vault-1.19
Chainguard
Status
Impact
This vulnerability is related to processing complex payloads within the default request size limit that enables excessive memory and CPU consumption of Vault. Upstream does not plan to backport the fix to the 1.19.x Community Edition stream but has available fixes in the Enterprise Edition version stream. Users should upgrade to Vault CE 1.20.3 or later which contains the fix.
Status