CVE-2025-68476: KEDA has Arbitrary File Read via Insufficient Path Validation in HashiCorp Vault Service Account Credential
Overview
- Severity
- N/A
- Exploit Status
- Not Exploited
- Patch Tuesday
- 2025-Dec
- Released
- 2025-12-24
- Last Updated
- 2026-01-08
- EPSS Score
- 0.15% (percentile: 36.3%)
Affected Products (2)
Other
Revision History
- 2025-12-24: Information published.
- 2025-12-25: Information published.
- 2025-12-25: Information published.
- 2026-01-06: Information published.
- 2026-01-08: Information published.