Hashicorp Latest Vulnerabilities
Latest vulnerabilities published by hashicorp
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Symlink Attack Vulnerability in HashiCorp's go-getter Library
CVE-2025-8959HashicorpShared Library7.5HIGHLDAP Authentication Flaw in HashiCorp Vault and Vault Enterprise
CVE-2025-6013HashicorpVault6.5MEDIUMMFA Bypass and Token Reuse in HashiCorp Vault and Vault Enterprise
CVE-2025-6015HashicorpVault5.7MEDIUMTiming Side Channel Vulnerability in Vault and Vault Enterprise
CVE-2025-6011HashicorpVault3.7LOWUser Lockout Bypass in Vault by HashiCorp
CVE-2025-6004HashicorpVault5.3MEDIUMTLS Certificate Authentication Issue in HashiCorp Vault Products
CVE-2025-6037HashicorpVault6.8MEDIUMCode Reuse Vulnerability in HashiCorp Vault's TOTP Secrets Engine
CVE-2025-6014HashicorpVault6.5MEDIUMPrivileged Code Execution Vulnerability in HashiCorp Vault
CVE-2025-6000HashicorpVault9.1CRITICALPrivilege Escalation Vulnerability in HashiCorp Vault by HashiCorp
CVE-2025-5999HashicorpVault7.2HIGHDenial of Service Vulnerability in HashiCorp Vault Community and Enterprise Products
CVE-2025-4656HashicorpVault3.1LOWACL Policy Lookup Issue in Nomad Community and Nomad Enterprise
CVE-2025-4922HashicorpNomad8.1HIGHBypassing Sentinel Policies in Nomad Enterprise by HashiCorp
CVE-2025-3744HashicorpNomad Enterprise7.6HIGHAuthentication Method Flaw in Vault by HashiCorp
CVE-2025-3879HashicorpVault8.8HIGHSensitive Information Exposure in HashiCorp Vault Key/Value Plugin
CVE-2025-4166HashicorpVault6.5MEDIUMToken Exposure Vulnerability in Nomad Community and Enterprise by HashiCorp
CVE-2025-1296HashicorpNomad6.5MEDIUMAuthentication Bypass in Hermes by HashiCorp Affecting AWS ALB Integration
CVE-2025-1293HashicorpTooling8.2HIGHEvent Stream Namespace ACL Policy Bypass in Nomad by HashiCorp
CVE-2025-0937HashicorpNomad7.1HIGHZip-Slip Vulnerability in HashiCorp's go-slug Library
CVE-2025-0377HashicorpShared Library7.5HIGHPrivilege Escalation Vulnerability in HashiCorp Nomad Allocations
CVE-2024-12678HashicorpNomad6.5MEDIUMBoundary Vulnerability May Cause Premature Server Termination
CVE-2024-12289HashicorpBoundary5.9MEDIUMArbitrary Cross-Namespace Volume Creation Vulnerability
CVE-2024-10975HashicorpNomad7.7HIGHDenial of Service Vulnerability in Vault by HashiCorp
CVE-2024-8185HashiCorpVaultreflective XSS vulnerability found in Consul and Consul Enterprise
CVE-2024-10086HashicorpConsul6.1MEDIUMBypassing HTTP Header Based Access Rules via L7 Traffic Intentions
CVE-2024-10006HashicorpConsul5.8MEDIUMBypassing HTTP Request Path-Based Access Rules Through URL Paths in L7 Traffic
CVE-2024-10005HashicorpConsul5.8MEDIUM