CVE-2026-42186 | OpenBao up to 2.5.2 improper removal of sensitive information before storage or transfer (GHSA-vv66-6rp4-wr4f)

A vulnerability was found in OpenBao up to 2.5.2 and classified as problematic. Affected by this issue is some unknown functionality. Executing a manipulation can lead to improper removal of sensitive information before storage or transfer.

This vulnerability is tracked as CVE-2026-42186. The attack can be launched remotely. No exploit exists.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More