← Back to home
wid-sec-w-2026-1164  ·  Published 2026-04-16  ·  View on BSI CERT-Bund ↗

Hashicorp Vault Community Edition and Enterprise: Multiple Vulnerabilities

CVSS N/A NONE

Risk Summary

Ein Angreifer kann mehrere Schwachstellen in Hashicorp Vault ausnutzen, um Daten zu manipulieren, einen Denial-of-Service-Zustand zu verursachen oder vertrauliche Informationen offenzulegen, was möglicherweise eine Privilegienerweiterung ermöglicht.

CVEs (4)

Affected Vendors

Hashicorp

Affected Products (10)

Hashicorp · Vault Community Edition <2.0.0
Hashicorp · Vault Community Edition 2.0.0
Hashicorp · Vault Enterprise <2.0.0
Hashicorp · Vault Enterprise 2.0.0
Hashicorp · Vault Enterprise <1.21.5
Hashicorp · Vault Enterprise 1.21.5
Hashicorp · Vault Enterprise <1.20.10
Hashicorp · Vault Enterprise 1.20.10
Hashicorp · Vault Enterprise <1.19.16
Hashicorp · Vault Enterprise 1.19.16

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more