Primary

Context

HashiCorp Vault and Vault Enterprise Userpass Auth Timing Side-Channel Vulnerability

Vulnerability

Patched

A timing side-channel vulnerability has been identified in the userpass authentication method of HashiCorp Vault and Vault Enterprise. This issue allows an attacker to differentiate between existing and non-existing users, potentially leading to the enumeration of valid usernames. The vulnerability arises from an improper handling of username verification, which could be exploited to gather information about user accounts. Affected versions include Vault Community Edition up to 1.20.0 and Vault Enterprise up to 1.20.0, 1.19.6, 1.18.11, 1.16.22, and 1.15.15.

Impact

Exploitation of this vulnerability could allow for the enumeration of usernames in the userpass authentication method, potentially leading to unauthorized access if combined with other information or vulnerabilities.

Remediation

Users are advised to upgrade to Vault Community Edition 1.20.1 or Vault Enterprise 1.20.1, 1.19.7, 1.18.12, or 1.16.23.

Added: Aug 1, 2025, 7:48 PM

Updated: Aug 1, 2025, 7:48 PM

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

2.5

exploitability

7.4

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HashiCorp Vault and Vault Enterprise Userpass Auth Timing Side-Channel Vulnerability

Vulnerability

Impact

Remediation

Affected Products

HashiCorp Vault

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating