PT-2026-51109 · Go · Github.Com/Openbao/Openbao

Publicado

2026-06-19

Atualizado

2026-06-19

CVE-2026-55774

CVSS v4.0

2.1

Baixa

Vetor

AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Summary

OpenBao users with access to the sys/leases/revoke/:lease id endpoint in any namespace can revoke leases in any other namespace as long as the lease identifier is known to them, bypassing ACLs that should apply for cross-namespace revocations.

Impact

OpenBao's namespaces provide multi-tenant separation. A tenant who intentionally leaks lease identifiers can have their lease and underlying credential revoked by a user in another tenant.

Patch

This will be fixed in OpenBao v2.5.5.

References

This vulnerability is similar to but distinct from:

CVE-2026-45808 / GHSA-v8v8-cm84-m686
CVE-2026-40264 / GHSA-p49j-v9wc-wg57

Correção

Incorrect Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-863

Identificadores relacionados

CVE-2026-55774

GHSA-C36X-H252-G9X2

Produtos afetados

Github.Com/Openbao/Openbao

PT-2026-51109 · Go · Github.Com/Openbao/Openbao

CVE-2026-55774

Summary

Impact

Patch

References

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6