Lucene search
Veracode Vulnerability DatabaseVERACODE:25670HistoryJun 12, 2020 - 5:50 a.m.
Insecure Access Control
2020-06-1205:50:38
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.001 Low
EPSS
Percentile
41.6%
github.com/hashicorp/consul uses an insecure access control. The changes to legacy ACL tokens rules are not enforced as they are not being propagated to the secondary data center.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/hashicorp/consul | le | 1.6.5 | |
| github.com/hashicorp/consul | le | 1.7.3 |
Related
debiancve
debiancve
CVE-2020-12797
2020-06-11 20:15:11
osv
osv
Incorrect Permission Assignment for Critical Resource in Hashicorp Consul
2021-06-23 17:52:33
BIT-consul-2020-12797
2024-03-06 10:55:03
CVE-2020-12797
2020-06-11 20:15:11
cve
cve
CVE-2020-12797
2020-06-11 20:15:11
github
github
Incorrect Permission Assignment for Critical Resource in Hashicorp Consul
2021-06-23 17:52:33
cvelist
cvelist
CVE-2020-12797
2020-06-11 19:37:19
nvd
nvd
CVE-2020-12797
2020-06-11 20:15:11
prion
prion
Design/Logic Flaw
2020-06-11 20:15:00
ubuntucve
ubuntucve
CVE-2020-12797
2020-06-11 00:00:00