CVE-2026-4525

high

Red Hat

CVSS v3 Base Score

7.5

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.0%

Exploitation probability in 30 days

Top 97% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Confidentiality

High

Integrity

High

Availability

High

Published: April 17, 2026 (27 days ago)

Last Modified: April 17, 2026

Vendor: Red Hat

Source: REDHAT

Description

A flaw was found in Vault. When a Vault authentication mount is configured to pass through the "Authorization" header, and this header is used for authentication, Vault incorrectly forwards the sensitive Vault token to the authentication plugin backend. This can lead to the disclosure of authentication tokens to potentially untrusted or compromised backend plugins, enabling unauthorized access or further system compromise.

CWE

CWE-201

Affected Products

Red Hat OpenShift Container Platform 4Red Hat Openshift Data Foundation 4

References

🔗 bugzilla.redhat.com 🔗 www.cve.org 🔗 nvd.nist.gov 🔗 discuss.hashicorp.com

CVE-2026-4525

Vulnerability Report

Description

CWE

Affected Products

References