logo

Database

Security controls bypass or absence In github.com/hashicorp/vault

Description

HashiCorp Vault and Vault Enterprise's AWS Auth method may be susceptible to authentication bypass Vault and Vault Enterprise's ("Vault") AWS Auth method may be susceptible to authentication bypass if the role of the configured bound_principal_iam is the same across AWS accounts, or uses a wildcard. This vulnerability is fixed in Vault Community Edition 1.21.0 and Vault Enterprise 1.21.0, 1.20.5, 1.19.11, and 1.16.27.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2025-116212. NVD-2025-116213. OSV-2025-116214. GCVE-2025-11621

References

1. https://github.com/hashicorp/vault/commit/8d07273d14ae7f5a48cc96f66cc86615dea833902. https://discuss.hashicorp.com/t/hcsec-2025-30-vault-aws-auth-method-authentication-bypass-through-mishandling-of-cache-entries/76709

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.