Improper access control in Vault and Vault Enterprise - CVE-2026-5051

 

Improper access control in Vault and Vault Enterprise - CVE-2026-5051

Published: July 2, 2026


Vulnerability identifier: #VU136683
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2026-5051
CWE-ID: CWE-284
Exploitation vector: Local access
Exploit availability: No public exploit available
Vendor: HashiCorp
Affected software:
Vault
Vault Enterprise

Detailed vulnerability description

The vulnerability allows a local user to bypass intended protections against writing audit output into sensitive plugin paths.

The vulnerability exists due to improper access control in the file audit device validation logic when using the legacy path audit option. A local user can configure a file audit device with only the legacy path option to bypass intended protections against writing audit output into sensitive plugin paths.

Only instances with a configured plugin directory are vulnerable.


How to mitigate CVE-2026-5051

Install security update from vendor's website.

Sources