PT-2025-43548 · Hashicorp+1 · Vault Enterprise+2

Pavlos Karakalidis

Publicado

2025-10-23

Atualizado

2026-05-24

CVE-2025-11621

CVSS v2.0

8.5

Alta

Vetor

AV:N/AC:L/Au:S/C:C/I:C/A:N

Name of the Vulnerable Software and Affected Versions Vault versions prior to 1.21.0 Vault Enterprise versions prior to 1.21.0, 1.20.5, 1.19.11, and 1.16.27

Description The AWS Auth method in Vault and Vault Enterprise may allow authentication bypass if the bound principal iam role is identical across multiple AWS accounts or utilizes a wildcard character. This can potentially lead to unauthorized access.

Recommendations Update Vault to version 1.21.0 or later. Update Vault Enterprise to version 1.21.0, 1.20.5, 1.19.11, or 1.16.27 or later.

Correção

Authentication Bypass Using an Alternate Path or Channel

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-288

Identificadores relacionados

BDU:2025-15600

BIT-VAULT-2025-11621

CVE-2025-11621

GHSA-9G4H-H484-3578

GO-2025-4070

OPENSUSE-SU-2025:15710-1

Produtos afetados

Red Os

Vault

Vault Enterprise

PT-2025-43548 · Hashicorp+1 · Vault Enterprise+2

CVE-2025-11621

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 98