{"vulnerability": "cve-2024-8365", "sightings": [{"uuid": "5842f433-7cf5-4206-a104-6710a40cf727", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-8365", "type": "seen", "source": "https://t.me/cvedetector/4594", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-8365 - Vault Community Edition and Vault Enterprise Stored TokenParameterValue Exposure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-8365 \nPublished : Sept. 2, 2024, 5:15 a.m. | 44\u00a0minutes ago \nDescription : Vault Community Edition and Vault Enterprise experienced a regression where functionality that HMAC\u2019d sensitive headers in the configured audit device, specifically client tokens and token accessors, was removed. This resulted in the plaintext values of client tokens and token accessors being stored in the audit log. This vulnerability, CVE-2024-8365, was fixed in Vault Community Edition and Vault Enterprise 1.17.5 and Vault Enterprise 1.16.9. \nSeverity: 6.2 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-02T08:01:22.000000Z"}]}