Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2023-2816

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Consul and Consul Enterprise allowed any user with service:write permissions to use Envoy extensions configured via service-defaults to patch remote proxy...

8.7CVSS7AI score0.00585EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:35 a.m.7 views

CVE-2023-2816

Consul and Consul Enterprise allowed any user with service:write permissions to use Envoy extensions configured via service-defaults to patch remote proxy instances that target the configured service, regardless of whether the user has permission to modify the services corresponding to those...

8.7CVSS9.3AI score0.00585EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/12/09 12:0 a.m.36 views

GLSA-202412-14 : HashiCorp Consul: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202412-14 HashiCorp Consul: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in HashiCorp Consul. Please review the CVE identifiers referenced below for details. Tenable has extracted the preceding descriptio...

8.7CVSS7.4AI score0.99999EPSS
Exploits19References12
CBLMariner
CBLMariner
added 2024/04/17 10:2 p.m.43 views

CVE-2023-2816 affecting package telegraf for versions less than 1.29.4-1

CVE-2023-2816 affecting package telegraf for versions less than 1.29.4-1. An upgraded version of the package is available that resolves this issue...

8.7CVSS6.5AI score0.00585EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/01/14 10:46 p.m.62 views

CVE-2023-2816 affecting package telegraf for versions less than 1.28.5-1

CVE-2023-2816 affecting package telegraf for versions less than 1.28.5-1. An upgraded version of the package is available that resolves this issue...

8.7CVSS6.8AI score0.00585EPSS
Exploits0
NVD
NVD
added 2023/06/02 11:15 p.m.14 views

CVE-2023-2816

Consul and Consul Enterprise allowed any user with service:write permissions to use Envoy extensions configured via service-defaults to patch remote proxy instances that target the configured service, regardless of whether the user has permission to modify the services corresponding to those...

8.7CVSS8.5AI score0.00585EPSS
Exploits0References1
OSV
OSV
added 2023/06/02 11:15 p.m.8 views

AZL-27396 CVE-2023-2816 affecting package telegraf for versions less than 1.28.5-1

Consul and Consul Enterprise allowed any user with service:write permissions to use Envoy extensions configured via service-defaults to patch remote proxy instances that target the configured service, regardless of whether the user has permission to modify the services corresponding to those...

6.5CVSS5.8AI score0.00585EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2023/06/02 11:15 p.m.25 views

CVE-2023-2816

Consul and Consul Enterprise allowed any user with service:write permissions to use Envoy extensions configured via service-defaults to patch remote proxy instances that target the configured service, regardless of whether the user has permission to modify the services corresponding to those...

8.7CVSS6.9AI score0.00585EPSS
Exploits0References2
CVE
CVE
added 2023/06/02 10:43 p.m.92 views

CVE-2023-2816

CVE-2023-2816 affects HashiCorp Consul/Consul Enterprise: any user with service:write can use Envoy extensions configured via service-defaults to patch remote proxy instances targeting a service, regardless of permissions on that service. This implies potential unauthorized proxy modification wit...

8.7CVSS7.2AI score0.00585EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/06/02 10:43 p.m.16 views

CVE-2023-2816 Consul Envoy Extension Downsteam Proxy Configuration By Upstream Service Owner

Consul and Consul Enterprise allowed any user with service:write permissions to use Envoy extensions configured via service-defaults to patch remote proxy instances that target the configured service, regardless of whether the user has permission to modify the services corresponding to those...

8.7CVSS6.9AI score0.00585EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/06/02 10:43 p.m.18 views

CVE-2023-2816 Consul Envoy Extension Downsteam Proxy Configuration By Upstream Service Owner

Consul and Consul Enterprise allowed any user with service:write permissions to use Envoy extensions configured via service-defaults to patch remote proxy instances that target the configured service, regardless of whether the user has permission to modify the services corresponding to those...

8.7CVSS6.7AI score0.00585EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/02 10:43 p.m.39 views

CVE-2023-2816 Consul Envoy Extension Downsteam Proxy Configuration By Upstream Service Owner

Consul and Consul Enterprise allowed any user with service:write permissions to use Envoy extensions configured via service-defaults to patch remote proxy instances that target the configured service, regardless of whether the user has permission to modify the services corresponding to those...

8.7CVSS8.7AI score0.00585EPSS
Exploits0References1
Rows per page
Query Builder