CVE-2025-12044

HIGH7.5EPSS 0.30%

Hashicorp Vault and Vault Enterprise vulnerable to a denial of service when processing JSON in github.com/hashicorp/vault

發布日:2025/10/23修改日:2026/2/4

描述

Hashicorp Vault and Vault Enterprise vulnerable to a denial of service when processing JSON in github.com/hashicorp/vault

受影響套件(3)

Bitnami/vault>= 0.6.0, < 1.16.27, >= 1.17.0, < 1.19.11, >= 1.20.0, < 1.21.0
Go/github.com/hashicorp/vault>= 1.20.3, < 1.21.0
Go/github.com/hashicorp/vault>= 1.20.3, < 1.21.0

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	HIGH7.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

參考連結(6)