CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

Tenable Nessus•added 2025/08/27 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2020-28053

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration...

6.5CVSS6.9AI score0.00257EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 3:26 p.m.•5 views

CVE-2020-28053

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6...

6.5CVSS6.6AI score0.00257EPSS

Exploits0

OSV•added 2024/01/31 11:11 p.m.•27 views

GHSA-6M72-467W-94RH Privilege Escalation in HashiCorp Consul

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6...

6.5CVSS6.3AI score0.00257EPSS

Exploits0References6

Github Security Blog•added 2024/01/31 11:11 p.m.•49 views

Privilege Escalation in HashiCorp Consul

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6...

6.5CVSS6.5AI score0.00257EPSS

Exploits0References7Affected Software1

Veracode•added 2020/12/07 3:46 a.m.•28 views

Privilege Escalation

consul is vulnerable to privilege escalation. The vulnerability exists due to the operators with operator:read ACL permissions are able to read the Consul Connect CA configuration when explicitly configured with the /v1/connect/ca/configuration endpoint including the private key, allowing a...

6.5CVSS3.4AI score0.00257EPSS

Exploits0References5Affected Software1

NVD•added 2020/11/23 2:15 p.m.•15 views

CVE-2020-28053

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6...

6.5CVSS6.9AI score0.00257EPSS

Exploits0References3

OSV•added 2020/11/23 2:15 p.m.•1 views

DEBIAN-CVE-2020-28053

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6...

6.5CVSS6.9AI score0.00257EPSS

Exploits0References1

OSV•added 2020/11/23 2:15 p.m.•0 views

UBUNTU-CVE-2020-28053

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6...

6.5CVSS6.8AI score0.00257EPSS

Exploits0References5

UbuntuCve•added 2020/11/23 2:15 p.m.•25 views

CVE-2020-28053

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6...

6.5CVSS6.8AI score0.00257EPSS

Exploits0References4

Cvelist•added 2020/11/23 1:11 p.m.•19 views

CVE-2020-28053

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6...

6.4AI score0.00257EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by