cbcvebase.
CVE-2025-6203
published 2025-08-28

CVE-2025-6203: A malicious user may submit a specially-crafted complex payload that otherwise meets the default request size limit which results in excessive memory and CPU…

PriorityP343high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
0.70%
48.4th percentile
A malicious user may submit a specially-crafted complex payload that otherwise meets the default request size limit which results in excessive memory and CPU consumption of Vault. This may lead to a timeout in Vault’s auditing subroutine, potentially resulting in the Vault server to become unresponsive. This vulnerability, CVE-2025-6203, is fixed in Vault Community Edition 1.20.3 and Vault Enterprise 1.20.3, 1.19.9, 1.18.14, and 1.16.25.

Affected

8 ranges
VendorProductVersion rangeFixed in
github.comhashicorp_vault>= 0 < 1.20.31.20.3
github.comopenbao_openbao>= 0 < 2.4.12.4.1
hashicorpvault>= 1.15.0 < 1.16.271.16.27
hashicorpvault>= 1.15.0 < 1.21.01.21.0
hashicorpvault>= 1.18.0 < 1.18.151.18.15
hashicorpvault>= 1.19.0 < 1.19.111.19.11
hashicorpvault>= 1.20.0 < 1.20.51.20.5
hashicorpvault_enterprise>= 1.15.0 < 1.21.21.21.2

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
ghsa7.5HIGH
osv7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.