Lucene search

BIT-consul-2021-37219

🗓️ 06 Mar 2024 10:02:53Reported by GoogleType

osv🔗 osv.dev👁 17 Views

HashiCorp Consul 1.10.1 allows non-server agents to access server-only functionality, leading to privilege escalation. Fixed in versions 1.8.15, 1.9.9 and 1.10.2

Reporter	Title	Published	Views	Family All 33
Prion	Privilege escalation	7 Sep 202112:15	–	prion
RedhatCVE	CVE-2021-37219	27 Sep 202114:02	–	redhatcve
Wolfi	CVE-2021-37219 vulnerabilities	7 Sep 202112:15	–	wolfi
OSV	CGA-QGH6-GR3Q-8JP4	6 Jun 202412:26	–	osv
OSV	CGA-9FXC-GJPW-FW7H	6 Jun 202412:25	–	osv
OSV	CGA-3WCW-R755-6QXJ	6 Jun 202412:22	–	osv
OSV	CGA-327X-GM8R-8MP5	6 Jun 202412:21	–	osv
OSV	GO-2022-0593 HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul	21 Aug 202415:11	–	osv
OSV	HashiCorp Consul Privilege Escalation Vulnerability	8 Sep 202120:14	–	osv
OSV	CGA-XW46-G57P-X8JH	21 Jun 202408:04	–	osv

Source	Link
discuss	www.discuss.hashicorp.com/t/hcsec-2021-22-consul-raft-rpc-privilege-escalation/29024
security	www.security.gentoo.org/glsa/202207-01
hashicorp	www.hashicorp.com/blog/category/consul

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Mar 2024 10:53Current

7.1High risk

Vulners AI Score7.1

CVSS38.8

EPSS0.00197