Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-28156

Опубликовано: 20 апр. 2021
Источник: debian
EPSS Низкий

Описание

HashiCorp Consul Enterprise version 1.8.0 up to 1.9.4 audit log can be bypassed by specifically crafted HTTP events. Fixed in 1.9.5, and 1.8.10.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
consulnot-affectedpackage

Примечания

  • https://bugzilla.redhat.com/show_bug.cgi?id=1950492

  • https://github.com/hashicorp/consul/pull/10030

EPSS

Процентиль: 79%
0.01279
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2021-28156

CVSS3: 7.5
ubuntu
почти 5 лет назад

HashiCorp Consul Enterprise version 1.8.0 up to 1.9.4 audit log can be bypassed by specifically crafted HTTP events. Fixed in 1.9.5, and 1.8.10.

redhat логотип

CVE-2021-28156

CVSS3: 7.5
redhat
почти 5 лет назад

HashiCorp Consul Enterprise version 1.8.0 up to 1.9.4 audit log can be bypassed by specifically crafted HTTP events. Fixed in 1.9.5, and 1.8.10.

nvd логотип

CVE-2021-28156

CVSS3: 7.5
nvd
почти 5 лет назад

HashiCorp Consul Enterprise version 1.8.0 up to 1.9.4 audit log can be bypassed by specifically crafted HTTP events. Fixed in 1.9.5, and 1.8.10.

github логотип

GHSA-jw67-86pq-v324

CVSS3: 7.5
github
больше 3 лет назад

HashiCorp Consul Enterprise version 1.8.0 up to 1.9.4 audit log can be bypassed by specifically crafted HTTP events. Fixed in 1.9.5, and 1.8.10.

EPSS

Процентиль: 79%
0.01279
Низкий