This cloud security platform is finding zero-days by itself
A simple automated scan reveals a critical flaw in a secrets management platform
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
Oxeye’s cloud security platform discovered a high-severity zero-day vulnerability in a secrets management system completely autonomously - with no manual input or intervention.
According to the company, its cloud-native application security platform found a zero-day in HashiCorp Vault Project, a popular identity-based secrets and encryption management system used to control access to API encryption keys, passwords, and certificates.
The flaw was an SQL injection vulnerability that could have allowed threat actors remote code execution (RCE) capabilities. It is now tracked as CVE-2023-0620. The flaw has since been addressed and a patch has been released.
Patches released
Oxeye said its Application Security Platform identified the zero-day as part of a standard deployment scan, and concluded that threat actors could have used it to access sensitive data, play with it, and even run malicious apps on the targetendpoints.
“Given the trend toward microservices in modern software development, configuration-based attacks like this are a significant threat and are expected to become more common.
Microsoft, Google and Apple zero-days were a huge security threat in 2022>Apple’s recent zero-days patch is now available for older devices>These are the best identity theft solutions right now
“Because the centralized nature of configurations makes them a single point of truth, they are a lucrative target for threat actors. As such, organizations should prioritize the security of configuration files and other centralized components in modern applications,” the researchers conclude.
After disclosing the flaw to HashiCorp, the company released patches 1.13.1, 1.12.5, and 1.11.9.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
“The importance of restricting access to critical tools and implementing adequate input validation to prevent SQL injection attacks is highlighted by this vulnerability in HashiCorp’s Vault project,” said Ron Vider, CTO and Co-Founder for Oxeye. “To safeguard your environment, swiftly applying patches and ensuring security policies are current will ensure successful attacks are avoided.”
Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.
New fanless cooling technology enhances energy efficiency for AI workloads by achieving a 90% reduction in cooling power consumption
Samsung plans record-breaking 400-layer NAND chip that could be key to breaking 200TB barrier for ultra large capacity AI hyperscaler SSDs
LG Electronics sets ambitious B2B revenue goal to offset declining consumer demand
