Known Vulnerabilities for Hashicorp Vault by Jenkins
Listed below are 5 of the newest known vulnerabilities associated with "Hashicorp Vault" by "Jenkins".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-46590 json | Deserialization of Untrusted Data vulnerability in Apache Camel PQC component. The camel-pqc component persists post-quantum... | Not Provided | 2026-07-06 | 2026-07-06 |
| CVE-2026-43867 json | Deserialization of Untrusted Data vulnerability in Apache Camel PQC Component. The camel-pqc component persists post-quantum... | Not Provided | 2026-07-06 | 2026-07-06 |
| CVE-2026-39946 json | OpenBao is an open source identity-based secrets management system. Prior to version 2.5.3, when OpenBao revoked privileges o... | Not Provided | 2026-04-21 | 2026-04-21 |
| CVE-2026-39388 json | OpenBao is an open source identity-based secrets management system. Prior to version 2.5.3, OpenBao's Certificate authenticat... | Not Provided | 2026-04-21 | 2026-04-21 |
| CVE-2026-5051 json | HashiCorp Vault and Vault Enterprise prior to 2.0.1 audit device validation logic did not consistently apply plugin directory... | Not Provided | 2026-07-01 | 2026-07-01 |
| CVE-2023-33001 json | Jenkins HashiCorp Vault Plugin 360.v0a_1c04cf807d and earlier does not properly mask (i.e., replace with asterisks) credentia... | 7.5 - HIGH | 2023-05-16 | 2023-05-25 |
| CVE-2022-36888 json | A missing permission check in Jenkins HashiCorp Vault Plugin 354.vdb_858fd6b_f48 and earlier allows attackers with Overall/Re... | 6.5 - MEDIUM | 2022-07-27 | 2023-11-22 |
| CVE-2022-25197 json | Jenkins HashiCorp Vault Plugin 336.v182c0fbaaeb7 and earlier implements functionality that allows agent processes to read arb... | 6.5 - MEDIUM | 2022-02-15 | 2023-11-03 |
| CVE-2022-25186 json | Jenkins HashiCorp Vault Plugin 3.8.0 and earlier implements functionality that allows agent processes to retrieve any Vault s... | 6.5 - MEDIUM | 2022-02-15 | 2023-11-15 |
| CVE-2022-23109 json | Jenkins HashiCorp Vault Plugin 3.7.0 and earlier does not mask Vault credentials in Pipeline build logs or in Pipeline step d... | 6.5 - MEDIUM | 2022-01-12 | 2023-11-15 |