4 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-52893
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. OpenBao before v2.3.0 m...
GHSA-8F5R-8CMQ-7FMQ OpenBao Inserts Sensitive Information into Log File when processing malformed data
Impact OpenBao before v2.3.0 and HashiCorp Vault as of the current v1.19.5 may leak sensitive information in logs when processing malformed data. This is separate from the earlier HCSEC-2025-09 / CVE-2025-4166. Patches This issue has been fixed in OpenBao v2.3.0 and later. Workarounds Like with...
OpenBao Inserts Sensitive Information into Log File when processing malformed data
Impact OpenBao before v2.3.0 and HashiCorp Vault as of the current v1.19.5 may leak sensitive information in logs when processing malformed data. This is separate from the earlier HCSEC-2025-09 / CVE-2025-4166. Patches This issue has been fixed in OpenBao v2.3.0 and later. Workarounds Like with...
CVE-2025-52893 OpenBao May Leak Sensitive Information in Logs When Processing Malformed Data
OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. OpenBao before v2.3.0 may leak sensitive information in logs when processing malformed data. This is separate from the earlier HCSEC-2025-09 / CVE-2025-4166. Th...