CVE-2026-5052

🗓️ 17 Apr 2026 02:55:25Reported by HashiCorpType

CVE-2026-5052: Vault PKI ACME validation could reach local targets, enabling server side forgery.

Reporter	Title	Published	Views	Family All 17
ATTACKERKB	CVE-2026-5052	17 Apr 202602:55	–	attackerkb
IBM Security Bulletins	Security Bulletin: Vault Vulnerable to Server-Side Request Forgery in ACME Challenge Validation via Attacker-Controlled DNS	13 May 202620:12	–	ibm
Circl	CVE-2026-5052	17 Apr 202606:07	–	circl
CNNVD	HashiCorp Vault和HashiCorp Vault Enterprise 安全漏洞	17 Apr 202600:00	–	cnnvd
Cvelist	CVE-2026-5052 Vault Vulnerable to Server-Side Request Forgery in ACME Challenge Validation via Attacker-Controlled DNS	17 Apr 202602:55	–	cvelist
EUVD	EUVD-2026-23344	17 Apr 202606:31	–	euvd
Github Security Blog	HashiCorp Vault has Server-Side Request Forgery in ACME Challenge Validation via Attacker-Controlled DNS	17 Apr 202606:31	–	github
NVD	CVE-2026-5052	17 Apr 202604:16	–	nvd
OSV	BIT-VAULT-2026-5052 Vault Vulnerable to Server-Side Request Forgery in ACME Challenge Validation via Attacker-Controlled DNS	21 Apr 202612:15	–	osv
OSV	GHSA-8R5M-3F66-QPR3 HashiCorp Vault has Server-Side Request Forgery in ACME Challenge Validation via Attacker-Controlled DNS	17 Apr 202606:31	–	osv

NVD

Node

hashicorp vaultRange1.14.0–1.19.16enterprise

hashicorp vaultRange1.14.0–2.0.0-

hashicorp vaultRange1.20.0–1.20.10enterprise

hashicorp vaultRange1.21.0–1.21.5enterprise

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "64 bit",
      "32 bit",
      "x86",
      "ARM",
      "MacOS",
      "Windows",
      "Linux"
    ],
    "product": "Vault",
    "repo": "https://github.com/hashicorp/vault",
    "vendor": "HashiCorp",
    "versions": [
      {
        "lessThan": "2.0.0",
        "status": "affected",
        "version": "1.15.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "64 bit",
      "32 bit",
      "x86",
      "ARM",
      "MacOS",
      "Windows",
      "Linux"
    ],
    "product": "Vault Enterprise",
    "repo": "https://github.com/hashicorp/vault",
    "vendor": "HashiCorp",
    "versions": [
      {
        "changes": [
          {
            "at": "1.19.16",
            "status": "unaffected"
          },
          {
            "at": "1.20.10",
            "status": "unaffected"
          },
          {
            "at": "1.21.5",
            "status": "unaffected"
          }
        ],
        "lessThan": "2.0.0",
        "status": "affected",
        "version": "1.15.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
discuss	www.discuss.hashicorp.com/t/hcsec-2026-06-vault-vulnerable-to-server-side-request-forgery-in-acme-challenge-validation-via-attacker-controlled-dns/77343

27 Apr 2026 15:03Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.3 - 8.6

EPSS0.00021

SSVC

CWE-918