CVE-2025-5999

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Vault Community Edition versions prior to 1.20.0 Vault Enterprise versions prior to 1.20.0 Vault Enterprise version 1.19.6 Vault Enterprise version 1.18.11 Vault Enterprise version 1.16.22

Description A privileged Vault operator with write permissions to the root namespace’s identity endpoint could escalate their own or another user’s token privileges to Vault’s root policy.

Recommendations Update Vault Community Edition to version 1.20.0 or later. Update Vault Enterprise to version 1.20.0 or later. Update Vault Enterprise to version 1.19.6 or later. Update Vault Enterprise to version 1.18.11 or later. Update Vault Enterprise to version 1.16.22 or later.

Fix

LPE

Incorrect Privilege Assignment

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-266CWE-269

Related Identifiers

ALT-PU-2025-12480

ALT-PU-2025-12489

BDU:2025-09565

BIT-VAULT-2025-5999

CVE-2025-5999

GHSA-6H4P-M86H-HHGH

GHSA-VF84-MXRQ-CRQC

GO-2025-3837

GO-2025-3857

OPENSUSE-SU-2025:15434-1

OPENSUSE-SU-2025:15460-1

SUSE-SU-2025:02912-1

Affected Products

Alt Linux

Red Os

Vault Community Edition

Vault Enterprise

CVE-2025-5999

Weakness Enumeration

Related Identifiers

Affected Products

References · 63