Software Security > OpenBao

Tracking since May 19, 2026 · Latest signal Apr 21, 2026 · 8 matched data points

Overall sentiment

Positive 0% (0)Negative 25% (2)Neutral 75% (6)

Daily sentiment

Claims (2)

Claims contributing to this aggregate. Confirmed negative claims count as negative impact; confirmed positive claims count as positive impact.

Prior to version 2.5.3, OpenBao had vulnerabilities that allowed tenant token accessors to be revoked or renewed by privileged administrators, posing a security risk.

Parent: Software SecurityEntity: OpenBaoImpact: negativeDate: Apr 21, 2026Target: The security of OpenBao prior to version 2.5.34 matched entries1 confirmed0 disputed3 neutral0 unclear

Prior to version 2.5.3, OpenBao's OCI plugin downloader had a vulnerability that allowed insecure extraction of plugin binaries from container images, creating a potential security risk.

Parent: Software SecurityEntity: OpenBaoImpact: negativeDate: Apr 21, 2026Target: The security of OpenBao prior to version 2.5.34 matched entries1 confirmed0 disputed3 neutral0 unclear