CVE-2026-55774
LOW SEVERITYVulnerability Description
OpenBao: Cross-namespace lease revocation/renewal via canonical sys/leases/{revoke,renew} — incomplete fix of CVE-2026-45808
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
go
Product
github.com/openbao/openbao
External References
- https://github.com/openbao/openbao/security/advisories/GHSA-c36x-h252-g9x2
- https://github.com/openbao/openbao/pull/3307
- https://github.com/openbao/openbao/commit/b20b999dd4044d7b419a5472d8fe08407828be37
- https://github.com/openbao/openbao/releases/tag/v2.5.5
- https://github.com/advisories/GHSA-c36x-h252-g9x2
Discussion (0)
Add Comment
No comments yet. Be the first!