Fluid Attacks Database

Description

OpenBao's Token Store Allows Cross-Namespace Renewal, Revocation

Impact

OpenBao's namespaces provide multi-tenant separation. A tenant who leaks token accessors can have their token revoked or renewed by a privileged administrator in another tenant.

Patches

This was addressed in v2.5.3.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
go	github.com/openbao/openbao	>=0 <0.0.0-20260420162526-f58111d2ca54	0.0.0-20260420162526-f58111d2ca54

Aliases

1. CVE-2026-402642. NVD-2026-402643. OSV-2026-402644. GHSA-p49j-v9wc-wg575. GCVE-2026-40264

References

1. https://github.com/openbao/openbao/security/advisories/GHSA-p49j-v9wc-wg572. https://github.com/openbao/openbao/pull/29343. https://github.com/openbao/openbao/commit/059cc5950303688335d5c8ab9af8e453795d693a4. https://github.com/openbao/openbao/releases/tag/v2.5.3

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.