{"vulnerability": "CVE-2022-25244", "sightings": [{"uuid": "a0776515-6fd9-42b9-9c73-63b368b7143d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25244", "type": "seen", "source": "https://t.me/cibsecurity/38681", "content": "\u203c CVE-2022-25244 \u203c\n\nVault Enterprise clusters using the tokenization transform feature can expose the tokenization key through the tokenization key configuration endpoint to authorized operators with `read` permissions on this endpoint. Fixed in Vault Enterprise 1.9.4, 1.8.9 and 1.7.10.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-10T20:19:09.000000Z"}]}