Consul and Consul Enterprise’s cluster peering implementation contained a flaw whereby a peer cluster with service of the same name as a local service could corrupt Consul state, resulting in denial of service. This vulnerability was resolved in Consul 1.14.5, and 1.15.3
CPE | Name | Operator | Version |
---|---|---|---|
github.com/hashicorp/consul | lt | 1.15.3 | |
github.com/hashicorp/consul | lt | 1.14.5 |