Vulnerability Report: GO-2025-3662
- CVE-2025-3879, GHSA-f9ch-h8j7-8jwg
- Affects: github.com/hashicorp/vault
- Published: May 06, 2025
Hashicorp Vault Community vulnerable to Incorrect Authorization in github.com/hashicorp/vault
For detailed information about this vulnerability, visit https://github.com/advisories/GHSA-f9ch-h8j7-8jwg or https://nvd.nist.gov/vuln/detail/CVE-2025-3879.
Affected Packages
-
PathVersionsSymbols
Aliases
References
- https://github.com/advisories/GHSA-f9ch-h8j7-8jwg
- https://nvd.nist.gov/vuln/detail/CVE-2025-3879
- https://discuss.hashicorp.com/t/hcsec-2025-07-vault-s-azure-authentication-method-bound-location-restriction-could-be-bypassed-on-login/74716
- https://vuln.go.dev/ID/GO-2025-3662.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.