漏洞描述
Detects a publicly accessible HashiCorp Vault API instance that is unsealed and responding without authentication. This critical misconfiguration can expose sensitive secrets and enable privilege escalation or lateral movement.
vault-unsealed-unauth: HashiCorp Vault API - Exposure
PoC代码
暂无相关漏洞推荐
- POC CVE-2025-60188: Atarim < 4.2.2 - Sensitive Information Exposure
- POC ambassador-api-diagnostics-exposure: Ambassador API Gateway Diagnostics - Exposure
- POC wordpress-db-exposure: WordPress Database Backup File - Exposure
- POC bash-config-exposure: Bash Configuration - Exposure
- POC codekit-config-exposure: CodeKit Configuration Exposure
- POC flow-config-exposure: Flow Configuration - Exposure
- POC glimpse-data-exposure: Glimpse Diagnostics - Sensitive Data Exposure
- POC jfrog-artifactory-build-exposure: JFrog Artifactory Build - Exposure
- POC makefile-exposure: Makefile - Exposure
- POC mysql-config-exposure: MySQL Conifg - Exposure
- POC python-setup-config: Python Setup Configuration - Exposure
- POC rexify-config-exposure: Rexify Configuration - Exposure
- POC smtp-credentials-exposure: SMTP Credentials Exposure - Detection