CVE-2026-5807— Vault Vulnerable to Denial-of-Service via Unauthenticated Root Token Generation/Rekey Operations

CVSS 7.5 · High EPSS 0.03% · P8 Updated Apr 18, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-5807

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Vault Vulnerable to Denial-of-Service via Unauthenticated Root Token Generation/Rekey Operations

Source: NVD (National Vulnerability Database)

Vulnerability Description

Vault is vulnerable to a denial-of-service condition where an unauthenticated attacker can repeatedly initiate or cancel root token generation or rekey operations, occupying the single in-progress operation slot. This prevents legitimate operators from completing these workflows. This vulnerability, CVE-2026-5807, is fixed in Vault Community Edition 2.0.0 and Vault Enterprise 2.0.0.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

不加限制或调节的资源分配

Source: NVD (National Vulnerability Database)

Vulnerability Title

HashiCorp Vault 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

HashiCorp Vault是美国HashiCorp公司的一款私钥访问管理工具。 HashiCorp Vault存在安全漏洞，该漏洞源于未经验证的攻击者可重复启动或取消根令牌生成或重新密钥操作，占用单一进行中操作槽位，可能导致阻止合法操作员完成这些工作流程。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
HashiCorp	Vault	0 ~ 2.0.0	-
HashiCorp	Vault Enterprise	0 ~ 2.0.0.	-

II. Public POCs for CVE-2026-5807

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-5807

请登录查看更多情报信息。

Same Patch Batch · HashiCorp · 2026-04-17 · 4 CVEs total

CVE-2026-3605	8.1 HIGH	Vault KVv2 Metadata and Secret Deletion Policy Bypass Denial-of-Service
CVE-2026-4525	7.5 HIGH	Vault Token Leaked to Backends via Authorization: Bearer Passthrough Header
CVE-2026-5052	5.3 MEDIUM	Vault Vulnerable to Server-Side Request Forgery in ACME Challenge Validation via Attacker-

IV. Related Vulnerabilities

Same product: Vault

Same vendor: HashiCorp

Same weakness: CWE-770

V. Comments for CVE-2026-5807

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-5807— Vault Vulnerable to Denial-of-Service via Unauthenticated Root Token Generation/Rekey Operations

I. Basic Information for CVE-2026-5807

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-5807

III. Intelligence Information for CVE-2026-5807

Same Patch Batch · HashiCorp · 2026-04-17 · 4 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-5807

Leave a comment