HashiCorp Boundary 0.10.1 Privilege Escalation via Scope Mismatch (Fixed 0.10.2)
CVE-2022-36130 Published on September 1, 2022

HashiCorp Boundary up to 0.10.1 did not properly perform data integrity checks to ensure the resources were associated with the correct scopes, allowing potential privilege escalation for authorized users of another scope. Fixed in Boundary 0.10.2.

NVD

Products Associated with CVE-2022-36130

Want to know whenever a new CVE is published for HashiCorp Boundary? stack.watch will email you.

HashiCorp Boundary

Exploit Probability

EPSS

0.17%

Percentile

37.78%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

HashiCorp Boundary 0.10.1 Privilege Escalation via Scope Mismatch (Fixed 0.10.2)CVE-2022-36130 Published on September 1, 2022

Products Associated with CVE-2022-36130

Exploit Probability

HashiCorp Boundary 0.10.1 Privilege Escalation via Scope Mismatch (Fixed 0.10.2)
CVE-2022-36130 Published on September 1, 2022