Lucene search
K

4 matches found

HashiCorp Security Advisories
HashiCorp Security Advisories
added 2020/11/25 6:42 p.m.5 views

Consul's Health Check API Endpoints May Disclose Information

Summary Consul and Consul Enterprise “Consul” did not uniformly enforce ACLs across all API endpoints, resulting in potential unintended information disclosure. This vulnerability affected Consul versions 1.4.1 through 1.6.2 and was assigned CVE-2020-7955. Background Consul uses Access Control...

5.3CVSS6.7AI score0.01412EPSS
Exploits0Affected Software1
OSV
OSV
added 2020/01/31 1:15 p.m.13 views

CVE-2020-7955

HashiCorp Consul and Consul Enterprise 1.4.1 through 1.6.2 did not uniformly enforce ACLs across all API endpoints, resulting in potential unintended information disclosure. Fixed in 1.6.3...

5.3CVSS6.3AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2020/01/31 1:15 p.m.17 views

CVE-2020-7955

HashiCorp Consul and Consul Enterprise 1.4.1 through 1.6.2 did not uniformly enforce ACLs across all API endpoints, resulting in potential unintended information disclosure. Fixed in 1.6.3...

5.3CVSS6.8AI score0.01412EPSS
Exploits0References2
CVE
CVE
added 2020/01/31 12:19 p.m.85 views

CVE-2020-7955

HashiCorp Consul and Consul Enterprise versions 1.4.1–1.6.2 did not uniformly enforce ACLs across all API endpoints, potentially enabling information disclosure. Root cause: inconsistent ACL enforcement leading to exposure of information via multiple API endpoints. Impact: partial confidentiality...

5.3CVSS5.2AI score0.01412EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder