CVE-2023-0620 MEDIUM

CVE-2023-0620: Vault Vulnerable to SQL Injection When Configuring the Microsoft SQL Database Storage Backend

Vendor Hashicorp

Product Vault

Weakness CWE-89 · SQLi

Published March 30, 2023

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

6.5/10

Attack vector Local

Attack complexity Low

Privileges required High

User interaction Required

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

HashiCorp Vault and Vault Enterprise versions 0.8.0 through 1.13.1 are vulnerable to an SQL injection attack when configuring the Microsoft SQL (MSSQL) Database Storage Backend. When configuring the MSSQL plugin through the local, certain parameters are not sanitized when passed to the user-provided MSSQL database. An attacker may modify these parameters to execute a malicious SQL command. This issue is fixed in versions 1.13.1, 1.12.5, and 1.11.9.

Key dates

02Disclosure timeline

March 30, 2023 CVE published

February 13, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-0620 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/89.html

Related vulnerabilities

Identifiers

CVE CVE-2023-0620

CWE CWE-89

CVSS 6.5 / MEDIUM

Affected versions

Vendor Hashicorp

Product Vault

Affected ≥ 1.13.0 and < 1.13.1

Vendor Hashicorp

Product Vault

Affected ≥ 1.12.0 and < 1.12.5

Vendor Hashicorp

Product Vault

Affected ≥ 0.8.0 and < 1.11.9

Vendor Hashicorp

Product Vault Enterprise

Affected ≥ 1.13.0 and < 1.13.1

Vendor Hashicorp

Product Vault Enterprise

Affected ≥ 1.12.0 and < 1.12.5

Vendor Hashicorp

Product Vault Enterprise

Affected ≥ 0.8.0 and < 1.11.9

CVE-2023-0620: Vault Vulnerable to SQL Injection When Configuring the Microsoft SQL Database Storage Backend

01Description

02Disclosure timeline

03References

04Related CVE