English
Français
Light
Dark
System

Alert System

Stay informed at all times
Create an account Open a free account Login Manage your alerts

Hashicorp Consul 1.12.0 Enterprise Edition

CPE Details

Hashicorp Consul 1.12.0 Enterprise Edition
hashicorp
consul
1.12.0
2022-09-26 13:42 +00:00
2022-09-28 17:52 +00:00
CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.
Alert management

CPE Name: cpe:2.3:a:hashicorp:consul:1.12.0:*:*:*:enterprise:*:*:*

Informations

Vendor

hashicorp

Product

consul

Version

1.12.0

Software Edition

enterprise

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-10086 2024-10-30 21:21 +00:00 A vulnerability was identified in Consul and Consul Enterprise such that the server response did not explicitly set a Content-Type HTTP header, allowing user-provided inputs to be misinterpreted and lead to reflected XSS.
6.1
MEDIUM
CVE-2024-10006 2024-10-30 21:20 +00:00 A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using Headers in L7 traffic intentions could bypass HTTP header based access rules.
8.3
HIGH
CVE-2024-10005 2024-10-30 21:19 +00:00 A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using URL paths in L7 traffic intentions could bypass HTTP request path-based access rules.
8.1
HIGH
CVE-2022-40716 2022-09-22 22:00 +00:00 HashiCorp Consul and Consul Enterprise up to 1.11.8, 1.12.4, and 1.13.1 do not check for multiple SAN URI values in a CSR on the internal RPC endpoint, enabling leverage of privileged access to bypass service mesh intentions. Fixed in 1.11.9, 1.12.5, and 1.13.2."
6.5
MEDIUM