FLAT-2V27Q (CVE-2026-5807)
Asymmetric denial of service In github.com/hashicorp/vault
7.7
High
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-BE7AQ (CVE-2026-5052)
Server-side request forgery (SSRF) In github.com/hashicorp/vault
1.7
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-7RAY8 (CVE-2026-4525)
Sensitive information sent insecurely In github.com/hashicorp/vault
5.9
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-0K9PM (CVE-2026-3605)
Security controls bypass or absence In github.com/hashicorp/vault
4.3
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-190QM (CVE-2025-12044)
Asymmetric denial of service In github.com/hashicorp/vault
6.6
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-UUAJ8 (CVE-2025-11621)
Security controls bypass or absence In github.com/hashicorp/vault
4.9
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-TOOFP (CVE-2025-6203)
Asymmetric denial of service In github.com/hashicorp/vault
6.6
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-CGSQ5 (CVE-2025-6013)
Lack of multi-factor authentication In github.com/hashicorp/vault
4.5
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-8SJOF (CVE-2025-6011)
User enumeration In github.com/hashicorp/vault
1.7
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-VZXQ3 (CVE-2025-6004)
Lack of protection against brute force attacks In github.com/hashicorp/vault
2.7
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-RI0FU (CVE-2025-5999)
Privilege escalation In github.com/hashicorp/vault
6.1
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-34KQV (CVE-2025-6000)
Remote command execution In github.com/hashicorp/vault
7.6
High
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-NC1Y4 (CVE-2025-6014)
Sensitive information in source code In github.com/hashicorp/vault
4.9
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-N9CEG (CVE-2025-6037)
Insecure digital certificates In github.com/hashicorp/vault
5.9
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-6R70N (CVE-2025-6015)
Lack of protection against brute force attacks In github.com/hashicorp/vault
4.6
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-TSFBM (CVE-2025-4656)
Inappropriate coding practices In github.com/hashicorp/vault
0.5
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-ASU1P (CVE-2025-3879)
Authentication mechanism absence or evasion In github.com/hashicorp/vault
7.2
High
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-NM13V (CVE-2025-4166)
Technical information leak In github.com/hashicorp/vault
4.3
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-P03X5 (CVE-2024-8365)
Insecurely generated token In github.com/hashicorp/vault
2.0
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-UNKTQ (CVE-2024-6468)
Asymmetric denial of service In github.com/hashicorp/vault
6.6
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-5TKKH (CVE-2024-5798)
Improper authorization control for web services In github.com/hashicorp/vault
0.4
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-DMQGG (CVE-2024-2660)
Insecure functionality In github.com/hashicorp/vault
4.4
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-OXI9Q (CVE-2024-2048)
Insecure digital certificates In github.com/hashicorp/vault
7.2
High
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-X9LGI (CVE-2024-0831)
Sensitive information in source code In github.com/hashicorp/vault
4.3
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-R0PN8 (CVE-2021-3282)
Improper authorization control for web services In github.com/hashicorp/vault
6.6
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-H6HPK (CVE-2020-16251)
Authentication mechanism absence or evasion In github.com/hashicorp/vault
6.7
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-JBGIO (CVE-2020-10660)
Excessive privileges In github.com/hashicorp/vault
2.7
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-ISPS4 (CVE-2020-10661)
Excessive privileges In github.com/hashicorp/vault
8.1
High
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-QL9XG (CVE-2023-6337)
Improper resource allocation In github.com/hashicorp/vault
6.6
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-1LXSN (CVE-2023-5954)
Improper resource allocation In github.com/hashicorp/vault
6.6
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-2OIXI (CVE-2023-5077)
Privilege escalation In github.com/hashicorp/vault
5.9
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-2DYBS (CVE-2023-4680)
Lack of data validation In github.com/hashicorp/vault
4.9
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-303Z1 (CVE-2023-3462)
User enumeration In github.com/hashicorp/vault
2.7
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-6Q77H (CVE-2023-24999)
Improper authorization control for web services In github.com/hashicorp/vault
5.1
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-Q42KA (CVE-2022-41316)
Insecure digital certificates In github.com/hashicorp/vault
2.7
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-N042X (CVE-2023-2121)
Server side cross-site scripting In github.com/hashicorp/vault
1.3
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-W9NLZ (CVE-2023-0665)
Improper authorization control for web services In github.com/hashicorp/vault
2.7
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-PV6OU (CVE-2023-0620)
SQL injection - Code In github.com/hashicorp/vault
5.7
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-GDWT2 (CVE-2023-25000)
Lack of data validation - Path Traversal In github.com/hashicorp/vault
1.9
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-YPK3H (CVE-2022-40186)
Improper authorization control for web services In github.com/hashicorp/vault
8.0
High
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-139CV (CVE-2020-25816)
Insecure session expiration time In github.com/hashicorp/vault
8.1
High
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-4S9VF (CVE-2020-8567)
Insecure functionality In github.com/hashicorp/vault-csi-provider
0.6
Low
Ecosystem: Go
Package: github.com/hashicorp/vault-csi-provider
FLAT-ZL5L2 (CVE-2022-30689)
Authentication mechanism absence or evasion In github.com/hashicorp/vault
2.7
Low
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-HYN5O (CVE-2020-24359)
Lack of data validation In github.com/hashicorp/vault-ssh-helper
6.6
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault-ssh-helper
FLAT-L73BM (CVE-2021-42135)
Privilege escalation In github.com/hashicorp/vault
6.2
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-7R938 (CVE-2020-16250)
Insufficient data authenticity validation In github.com/hashicorp/vault
6.7
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-O1IVS (CVE-2020-7220)
Improper control of interaction frequency In github.com/hashicorp/vault
6.6
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-638PZ (CVE-2020-13223)
Business information leak In github.com/hashicorp/vault
6.6
Medium
Ecosystem: Go
Package: github.com/hashicorp/vault
FLAT-4OWRZ (CVE-2020-12757)
Lack of data validation In github.com/hashicorp/vault-plugin-secrets-gcp
8.1
High
Ecosystem: Go
Package: github.com/hashicorp/vault-plugin-secrets-gcp