CVE-2026-46405

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions OpenBao versions prior to 2.5.4

Description In the Kerberos authentication method, the GET handler or the use of an Authorization: Negotiate header causes the response to include a logical.Auth object alongside an error message. This leads to the creation of tokens with only the default policy and default TTL, lacking entity information. These tokens are hidden by the error message and are not accessible to the caller outside of sys/raw. The primary impact is potential increase in storage usage.

Recommendations Update to version 2.5.4. Set a rate limit quota to limit the creation of these paths as a temporary mitigation.

Fix

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

CVE-2026-46405

GHSA-7J6W-VVW2-5F9C

OPENSUSE-SU-2026:10835-1

Affected Products

Openbao

CVE-2026-46405

Weakness Enumeration

Related Identifiers

Affected Products

References · 10