Lucene search
GoogleOSV:GHSA-Q7FX-WM2P-QFJ8HistoryMay 13, 2022 - 1:23 a.m.
HashiCorp Consul vulnerable to Origin Validation Error
2022-05-1301:23:06
Google
osv.dev
5
hashicorp consul
origin validation error
tls communication
EPSS
0.003
Percentile
69.2%
HashiCorp Consul 1.4.3 lacks server hostname verification for agent-to-agent TLS communication. In other words, the product behaves as if verify_server_hostname were set to false, even when it is actually set to true. This is fixed in 1.4.4.
Related
osv
osv
CVE-2019-9764
2019-03-26 14:29:00
CGA-cp9w-mfrq-958q
2024-06-06 12:26:46
CGA-93gv-hv4c-83gx
2024-06-21 08:04:08
debiancve
debiancve
CVE-2019-9764
2019-03-26 14:29:00
cvelist
cvelist
CVE-2019-9764
2019-03-26 13:05:51
prion
prion
Design/Logic Flaw
2019-03-26 14:29:00
veracode
veracode
Improper Hostname Verification For TLS
2019-03-27 05:30:29
wolfi
wolfi
CVE-2019-9764 vulnerabilities
2024-09-28 03:12:03
ubuntucve
ubuntucve
CVE-2019-9764
2019-03-26 00:00:00
github
github
HashiCorp Consul vulnerable to Origin Validation Error
2022-05-13 01:23:06
cgr
cgr
CVE-2019-9764 vulnerabilities
2024-05-19 03:07:16
nvd
nvd
CVE-2019-9764
2019-03-26 14:29:00
cve
cve
CVE-2019-9764
2019-03-26 14:29:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs
2023-07-03 18:48:48