Authorization Header Misconfiguration in HashiCorp Vault
CVE-2026-4525

7.5HIGH

Key Information:

Vendor: Hashicorp
Status: Vault; Vault Enterprise
Vendor: CVE Published:; 17 April 2026

What is CVE-2026-4525?

An issue in HashiCorp Vault arises when the 'Authorization' header passes through an auth mount configured for a token authorization. In such cases, Vault incorrectly forwards the Vault token to the authentication plugin backend, which can potentially lead to unintended exposure of sensitive tokens. This vulnerability has been addressed in specific versions, ensuring improved security practices by sanitizing headers properly.

Affected Version(s)

Vault 64 bit 0.11.2 < 2.0.0

Vault Enterprise 64 bit 0.11.2 < 2.0.0

References

https://discuss.hashicorp.com/t/hcsec-2026-07-vault-may-e...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 17, 2026
Vulnerability Reserved
Mar 20, 2026

CVE-2026-4525 Data

JSON

Hashicorp

What is CVE-2026-4525?

Affected Version(s)

References

CVSS V3.1

Timeline