Vulnerability DatabaseCVE-2026-3605

CVE-2026-3605:
HashiCorp Vault vulnerability analysis and mitigation

An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secrets they were not authorized to read or write, resulting in denial-of-service. This vulnerability did not allow a malicious user to delete secrets across namespaces, nor read any secret data. Fxed in Vault Community Edition 2.0.0 and Vault Enterprise 2.0.0, 1.21.5, 1.20.10, and 1.19.16.

Source: NVD

View vulnerable instances

Not a customer? See how Wiz maps CVEs like this one to real cloud attack paths.

Watch 12-min demo

8.1

Score

Published April 17, 2026

Severity HIGH

CNA Score 8.1

Affected Technologies

HashiCorp Vault

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 1.7

Exploitation Probability (EPSS) N/A

Affected packages and libraries

cpe:2.3:a:hashicorp:vault
github.com/hashicorp/vault

Sources

NVD
GitHub Advisory Database
- GoLang Severity HIGHNo FixAdded at: Apr 18, 2026
VulnCheck NVD++
- Linux Severity HIGHHas FixAdded at: Apr 17, 2026
- Windows Severity HIGHHas FixAdded at: Apr 17, 2026

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

Request assessment

Related HashiCorp Vault vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-3605	HIGH	8.1	HashiCorp Vault	cpe:2.3:a:hashicorp:vault	No	Yes	Apr 17, 2026
CVE-2026-5807	HIGH	7.5	HashiCorp Vault	cpe:2.3:a:hashicorp:vault	No	Yes	Apr 17, 2026
CVE-2026-4525	HIGH	7.5	HashiCorp Vault	cpe:2.3:a:hashicorp:vault	No	Yes	Apr 17, 2026
CVE-2026-39883	HIGH	7.3	Packer	kubernetes-csi-external-attacher-fips	No	Yes	Apr 08, 2026
CVE-2026-5052	MEDIUM	5.3	HashiCorp Vault	cpe:2.3:a:hashicorp:vault	No	Yes	Apr 17, 2026