CVE-2025-6014

Vulnerability Description

Vault and Vault Enterprise’s (“Vault”) TOTP Secrets Engine code validation endpoint is susceptible to code reuse within its validity period. Fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23.

Vulnerability Details

Published Date

August 01, 2025

Last Modified

August 13, 2025

Source

NVD

CVE-2025-6014

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment