Known Vulnerabilities for Hashicorp Vault by Jenkins
Listed below are 5 of the newest known vulnerabilities associated with "Hashicorp Vault" by "Jenkins".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39946 json | OpenBao is an open source identity-based secrets management system. Prior to version 2.5.3, when OpenBao revoked privileges o... | Not Provided | 2026-04-21 | 2026-04-21 |
| CVE-2026-39388 json | OpenBao is an open source identity-based secrets management system. Prior to version 2.5.3, OpenBao's Certificate authenticat... | Not Provided | 2026-04-21 | 2026-04-21 |
| CVE-2023-33001 json | Jenkins HashiCorp Vault Plugin 360.v0a_1c04cf807d and earlier does not properly mask (i.e., replace with asterisks) credentia... | 7.5 - HIGH | 2023-05-16 | 2023-05-25 |
| CVE-2022-36888 json | A missing permission check in Jenkins HashiCorp Vault Plugin 354.vdb_858fd6b_f48 and earlier allows attackers with Overall/Re... | 6.5 - MEDIUM | 2022-07-27 | 2023-11-22 |
| CVE-2022-25197 json | Jenkins HashiCorp Vault Plugin 336.v182c0fbaaeb7 and earlier implements functionality that allows agent processes to read arb... | 6.5 - MEDIUM | 2022-02-15 | 2023-11-03 |
| CVE-2022-25186 json | Jenkins HashiCorp Vault Plugin 3.8.0 and earlier implements functionality that allows agent processes to retrieve any Vault s... | 6.5 - MEDIUM | 2022-02-15 | 2023-11-15 |
| CVE-2022-23109 json | Jenkins HashiCorp Vault Plugin 3.7.0 and earlier does not mask Vault credentials in Pipeline build logs or in Pipeline step d... | 6.5 - MEDIUM | 2022-01-12 | 2023-11-15 |