CVE-2025-6004

Vault and Vault Enterprise’s (“Vault”) user lockout feature could be bypassed for Userpass and LDAP authentication methods. Fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23.

Published: Aug 1, 2025
Updated: Aug 20, 2025
CVE: CVE-2025-6004
GHSA: GHSA-qgj7-fmq2-6cc4
Severity: Medium
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CWEs:

CWE-307

Affected Software
References

Software	From	Fixed in
github.com/hashicorp/vault	1.13.0	1.20.1
hashicorp / vault	1.17.0	1.18.12
hashicorp / vault	1.19.0	1.19.7
hashicorp / vault	1.20.0	1.20.0.x
hashicorp / vault	1.13.0	1.20.1
hashicorp / vault	1.13.0	1.16.23

https://discuss.hashicorp.com/t/hcsec-2025-16-vault-userpass-and-ldap-user-lockout-bypass/76035

Vulnerability Database

CVE-2025-6004