Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
vault-cli is a configurable command-line interface tool (and python library) to interact with Hashicorp Vault. vault-cli features the ability for rendering templated values. When a secret starts with the prefix !template!, vault-cli interprets the rest of the contents of the secret as a Jinja2 template. Jinja2 is a powerful templating engine and is not designed to safely render arbitrary templates. An attacker controlling a jinja2 template rendered on a machine …