Количество 4
Количество 4
CVE-2025-62705
OpenBao is an open source identity-based secrets management system. Prior to version 2.4.2, OpenBao's audit log did not appropriately redact fields when relevant subsystems sent []byte response parameters rather than strings. This includes, but is not limited to sys/raw with use of encoding=base64, all data would be emitted unredacted to the audit log, and Transit, when performing a signing operation with a derived Ed25519 key, would emit public keys to the audit log. This issue has been patched in OpenBao 2.4.2.
CVE-2025-62705
OpenBao is an open source identity-based secrets management system. Pr ...
ROS-20251128-02
Уязвимость openbao
GHSA-rc54-2g2c-g36g
OpenBao and Vault Leak []byte Fields in Audit Logs
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-62705 OpenBao is an open source identity-based secrets management system. Prior to version 2.4.2, OpenBao's audit log did not appropriately redact fields when relevant subsystems sent []byte response parameters rather than strings. This includes, but is not limited to sys/raw with use of encoding=base64, all data would be emitted unredacted to the audit log, and Transit, when performing a signing operation with a derived Ed25519 key, would emit public keys to the audit log. This issue has been patched in OpenBao 2.4.2. | CVSS3: 4.9 | 0% Низкий | около 1 месяца назад |
| CVE-2025-62705 OpenBao is an open source identity-based secrets management system. Pr ... | CVSS3: 4.9 | 0% Низкий | около 1 месяца назад |
 | ROS-20251128-02 Уязвимость openbao | CVSS3: 7.5 | 0% Низкий | 3 дня назад |
| GHSA-rc54-2g2c-g36g OpenBao and Vault Leak []byte Fields in Audit Logs | 0% Низкий | около 1 месяца назад |
Уязвимостей на страницу