CVE-2026-40264 | OpenBao up to 2.5.2 improper restriction of security token assignment (GHSA-p49j-v9wc-wg57)

A vulnerability was found in OpenBao up to 2.5.2. It has been declared as problematic. Affected by this issue is some unknown functionality. The manipulation results in improper restriction of security token assignment.

This vulnerability is reported as CVE-2026-40264. The attack can be launched remotely. No exploit exists.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More