CVE-2025-6203

Published Aug 28, 2025

Last updated 3 months ago

CVSS high 7.5

Overview

Description
A malicious user may submit a specially-crafted complex payload that otherwise meets the default request size limit which results in excessive memory and CPU consumption of Vault. This may lead to a timeout in Vault’s auditing subroutine, potentially resulting in the Vault server to become unresponsive. This vulnerability, CVE-2025-6203, is fixed in Vault Community Edition 1.20.3 and Vault Enterprise 1.20.3, 1.19.9, 1.18.14, and 1.16.25.
Source
security@hashicorp.com
NVD status
Analyzed
Products
vault

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.5
Impact score
3.6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity
HIGH

Weaknesses

security@hashicorp.com
CWE-770

Social media

Hype score
Not currently trending

  1. The battlefield's hot! HashiCorp Vault's CVE-2025-6203 risks DoS, and Astro Cloudflare Adapter's CVE-2025-58179 invites harmful scripts. Keep your defenses sharp, patch those holes!

    @K3YPTlC

    9 Sept 2025

    5 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  2. Critical DoS vulnerability (CVE-2025-6203) found in HashiCorp Vault. Upgrade to patched versions now to protect your servers. Link: https://t.co/UIsm6EfcrW #Security #Patch #Servers #Update #Risk #Bug #Exploit #Threat #Attack #Crash #Defense #Protection #Technology #Software

    @dailytechonx

    2 Sept 2025

    7 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. 🚨🚨CVE-2025-6203 hits HashiCorp Vault! Malicious users can exploit a DoS flaw, sending crafted payloads to spike CPU & memory, potentially crashing servers. Search by vul.cve Filter👉vul.cve="CVE-2025-6203" ZoomEye Dork👉app="Hashicorp Vault" Over 29.8k vulnerable

    @zoomeye_team

    2 Sept 2025

    995 Impressions

    3 Retweets

    13 Likes

    2 Bookmarks

    1 Reply

    0 Quotes

  4. 🚨Alert🚨CVE-2025-6203: DoS Flaw in HashiCorp Vault Allows Attackers to Crash Servers 📊123.6K Services are found on the https://t.co/ysWb28BTvF yearly. 🔗Hunter Link:https://t.co/xHOmRHMcOk 👇Query HUNTER : https://t.co/q9rtuGfZuz="HashiCorp Vault" https://t.co/yToXTZk

    @HunterMapping

    2 Sept 2025

    2288 Impressions

    8 Retweets

    26 Likes

    3 Bookmarks

    0 Replies

    0 Quotes

  5. 🚨Alert🚨CVE-2025-6203: DoS Flaw in HashiCorp Vault Allows Attackers to Crash Servers 📊123.6K Services are found on the https://t.co/ysWb28BTvF yearly. 🔗Hunter Link:https://t.co/xHOmRHMcOk 👇Query HUNTER : https://t.co/q9rtuGfZuz="HashiCorp Vault" https://t.co/Mpe1UnT

    @HunterMapping

    2 Sept 2025

    96 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. ⚠️⚠️ CVE-2025-6203: DoS Flaw in HashiCorp Vault Allows Attackers to Crash Servers 🎯32.8k+ Results are found on the https://t.co/pb16tGYaKe nearly year 🔗FOFA Link: https://t.co/GxG3J1bCW5 FOFA Query:app="HashiCorp-Vault" 🔖Refer:https://t.co/03cKPXixbM #OSINT #FOFA

    @fofabot

    2 Sept 2025

    8 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. CVE-2025-6203 A malicious user may submit a specially-crafted complex payload that otherwise meets the default request size limit which results in excessive memory and CPU consumptio… https://t.co/OZKicTXabW

    @CVEnew

    28 Aug 2025

    552 Impressions

    1 Retweet

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

Related CVEs

  1. Vault and Vault Enterprise (“Vault”) are vulnerable to an unauthenticated denial of service when processing JSON payloads. This occurs due to a regression from a previous fix for [+HCSEC-2025-24+|https://discuss.hashicorp.com/t/hcsec-2025-24-vault-denial-of-service-though-complex-json-payloads/76393]  which allowed for processing JSON payloads before applying rate limits. This vulnerability, CVE-2025-12044, is fixed in Vault Community Edition 1.21.0 and Vault Enterprise 1.16.27, 1.19.11, 1.20.5, and 1.21.0.CVE-2025-12044
  2. Vault and Vault Enterprise’s (“Vault”) AWS Auth method may be susceptible to authentication bypass if the role of the configured bound_principal_iam is the same across AWS accounts, or uses a wildcard. This vulnerability, CVE-2025-11621, is fixed in Vault Community Edition 1.21.0 and Vault Enterprise 1.21.0, 1.20.5, 1.19.11, and 1.16.27CVE-2025-11621
  3. Vault and Vault Enterprise’s (“Vault”) ldap auth method may not have correctly enforced MFA if username_as_alias was set to true and a user had multiple CNs that are equal but with leading or trailing spaces. Fixed in Vault Community Edition 1.20.2 and Vault Enterprise 1.20.2, 1.19.8, 1.18.13, and 1.16.24.CVE-2025-6013
  4. Vault and Vault Enterprise (“Vault”) TLS certificate auth method did not correctly validate client certificates when configured with a non-CA certificate as [+trusted certificate+|https://developer.hashicorp.com/vault/api-docs/auth/cert#certificate]. In this configuration, an attacker may be able to craft a malicious certificate that could be used to impersonate another user. Fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23.CVE-2025-6037
  5. Vault and Vault Enterprise’s (“Vault”) login MFA rate limits could be bypassed and TOTP tokens could be reused. Fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23.CVE-2025-6015

References

Sources include official advisories and independent security research.