Lucene search
K

5 matches found

NVD
NVD
added 2025/08/01 6:15 p.m.16 views

CVE-2025-5999

A privileged Vault operator with write permissions to the root namespace’s identity endpoint could escalate their own or another user’s token privileges to Vault’s root policy. Fixed in Vault Community Edition 1.20.0 and Vault Enterprise 1.20.0, 1.19.6, 1.18.11 and 1.16.22...

7.2CVSS0.00487EPSS
Exploits0References1
OSV
OSV
added 2025/08/01 6:15 p.m.6 views

CVE-2025-5999

A privileged Vault operator with write permissions to the root namespace’s identity endpoint could escalate their own or another user’s token privileges to Vault’s root policy. Fixed in Vault Community Edition 1.20.0 and Vault Enterprise 1.20.0, 1.19.6, 1.18.11 and 1.16.22...

7.2CVSS7.3AI score
Exploits0References1
Cvelist
Cvelist
added 2025/08/01 5:38 p.m.12 views

CVE-2025-5999 Vault Root Namespace Operator May Elevate Token Privileges

A privileged Vault operator with write permissions to the root namespace’s identity endpoint could escalate their own or another user’s token privileges to Vault’s root policy. Fixed in Vault Community Edition 1.20.0 and Vault Enterprise 1.20.0, 1.19.6, 1.18.11 and 1.16.22...

7.2CVSS0.00487EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/01 5:38 p.m.4 views

CVE-2025-5999 Vault Root Namespace Operator May Elevate Token Privileges

A privileged Vault operator with write permissions to the root namespace’s identity endpoint could escalate their own or another user’s token privileges to Vault’s root policy. Fixed in Vault Community Edition 1.20.0 and Vault Enterprise 1.20.0, 1.19.6, 1.18.11 and 1.16.22...

7.2CVSS6.8AI score0.00487EPSS
Exploits0References1
CVE
CVE
added 2025/08/01 5:38 p.m.62 views

CVE-2025-5999

CVE-2025-5999 affects Vault: a privileged operator with write access to the root namespace identity endpoints can escalate tokens to Vault root policy. The issue is confirmed in multiple OSV/GHSA entries and maps to OpenBao/HASHICorp disclosures. Affected product surface is the identity/group/end...

7.2CVSS7.4AI score0.00487EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder