Sandbox Path Bypass in Consul-Template Library by HashiCorp
CVE-2026-5061

4.7MEDIUM

Key Information:

Vendor: Hashicorp
Status: Tooling
Vendor: CVE Published:; 12 May 2026

What is CVE-2026-5061?

The Consul-Template library prior to version 0.42.0 contains a vulnerability that allows a sandbox path bypass, potentially enabling an attacker to read sensitive files located outside the intended sandbox environment via a symlink attack. The issue arises in the file helper component, which fails to properly validate file paths, thereby compromising the security of the application.

Affected Version(s)

Tooling 64 bit 0.1.0 < 0.42.0

References

https://discuss.hashicorp.com/t/hcsec-2026-12-consul-temp...

CVSS V3.1

Score:

4.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 12, 2026
Vulnerability Reserved
Mar 27, 2026

Credit

This issue was reported to HashiCorp by Mohamed Abdelaal (0xmrma).

CVE-2026-5061 Data

JSON

Hashicorp

What is CVE-2026-5061?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit