CVE-2026-39946 | OpenBao up to 2.5.2 PostgreSQL Database Secrets Engine sql injection (GHSA-6vgr-cp5c-ffx3)

A vulnerability has been found in OpenBao up to 2.5.2 and classified as critical. This impacts an unknown function of the component PostgreSQL Database Secrets Engine. Performing a manipulation results in sql injection.

This vulnerability is cataloged as CVE-2026-39946. It is possible to initiate the attack remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More