Vulnerability CVE-2022-30689
Published: 2022-05-17

Description:
HashiCorp Vault and Vault Enterprise from 1.10.0 to 1.10.2 did not correctly configure and enforce MFA on login after server restarts. This affects the Login MFA feature introduced in Vault and Vault Enterprise 1.10.0 and does not affect the separate Enterprise MFA feature set. Fixed in 1.10.3.

 References:
https://discuss.hashicorp.com
Copyright 2026, cxsecurity.com

 

Back to Top