NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-42186

Summary	OpenBao is an open source identity-based secrets management system. Prior to 2.5.3, when OpenBao's initial namespace deletion fails, subsequent retries fail to properly remove all data before marking the namespace as deleted. This can affect any outstanding leases as well as potentially leaving unrelated storage entries around. This vulnerability is fixed in 2.5.3.
Publication Date	May 15, 2026, 12:16 a.m.
Registration Date	May 15, 2026, 4:25 a.m.
Last Update	May 15, 2026, 2:18 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/openbao/openbao/commit/6d2e0506e2b41be0eaa6643bf7b4efc9a2c09445	security-advisories@github.com
2	https://github.com/openbao/openbao/releases/tag/v2.5.3	security-advisories@github.com
3	https://github.com/openbao/openbao/security/advisories/GHSA-vv66-6rp4-wr4f	security-advisories@github.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-212	保存または転送前の重要な情報の不適切な削除	https://cwe.mitre.org/data/definitions/212.html