Lucene search
+L

ROS-20250905-07

🗓️ 05 Sep 2025 00:00:00Reported by RedosType 
redos
 redos
🔗 redos.red-soft.ru👁 5 Views

Vault vulnerabilities allow two factor bypass, weak login lockout, auth flaws, and certificate errors.

Related
Packages
ReporterTitlePublishedViews
Family
attackerkb
CVE-2025-6013
6 Aug 202510:06
attackerkb
attackerkb
CVE-2025-6037
1 Aug 202517:52
attackerkb
bdu_fstec
The vulnerability of the authentication method used by the Vault Enterprise and Vault Community Edition archiving platforms for corporate information allows a perpetrator to create malicious certificates.
8 Aug 202500:00
bdu_fstec
bdu_fstec
The vulnerability of the sys/audit component in the Vault Enterprise and Vault Community Edition enterprise information archiving platform allows a perpetrator to gain unauthorized access to execute arbitrary code.
8 Aug 202500:00
bdu_fstec
bdu_fstec
The vulnerability of the user blocking mechanism of the Vault Enterprise and Vault Community Edition corporate information archiving platforms allows attackers to circumvent existing security restrictions.
8 Aug 202500:00
bdu_fstec
bdu_fstec
The vulnerability of the LDAP protocol implementation in HashiCorp’s Vault and Vault Enterprise archiving platforms allows attackers to circumvent security restrictions and gain unauthorized access to protected information.
11 Aug 202500:00
bdu_fstec
bdu_fstec
The vulnerability of the user blocking mechanism of the Vault Enterprise and Vault Community Edition corporate information archiving platforms allows attackers to circumvent existing security restrictions.
17 Sep 202500:00
bdu_fstec
bdu_fstec
The vulnerability of the Vault Enterprise and Vault Community Edition archiving platforms for corporate information, related to incorrect authentication, allows attackers to bypass the TOTP authentication process.
17 Sep 202500:00
bdu_fstec
bdu_fstec
The vulnerability of the CompareHashAndPassword function in the Vault Enterprise and Vault Community Edition platforms for archiving corporate information allows attackers to gain unauthorized access to protected information due to timing discrepancies.
17 Sep 202500:00
bdu_fstec
cgr
CVE-2025-6000 vulnerabilities
7 Jan 202601:30
cgr
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
redos7.3x86_64vault1.20.2-1UNKNOWN

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

05 Sep 2025 00:00Current
7.2High risk
Vulners AI Score7.2
CVSS 3.18.1 - 9.1
EPSS0.00867
SSVC
5