🔥

According to PANews, recent reports from Cyata have revealed multiple zero-day vulnerabilities in HashiCorp Vault, a widely used tool for wallet and key management in the cryptocurrency industry. These vulnerabilities affect critical areas such as authentication, identification, and authorization. Some of these flaws can bypass lock and multi-factor authentication protections, potentially allowing attackers to execute remote code, posing a significant threat to infrastructure security. The Cyata team has collaborated with HashiCorp to address these issues. 23pds, the Chief Information Security Officer at SlowMist Technology, advises relevant organizations to promptly upgrade to the latest version to mitigate potential risks.