GHSA-23jv-v6qj-3fhh

Опубликовано: 18 мая 2021

Источник: github

Github: Прошло ревью

CVSS3: 7.5

Описание

Denial of Service (DoS) in HashiCorp Consul

HashiCorp Consul and Consul Enterprise up to 1.6.2 HTTP/RPC services allowed unbounded resource usage, and were susceptible to unauthenticated denial of service. Fixed in 1.6.3.

Specific Go Packages Affected

github.com/hashicorp/consul/agent/consul

Ссылки

Пакеты

Наименование

github.com/hashicorp/consul

Затронутые версииВерсия исправления

< 1.6.3

1.6.3

EPSS

Процентиль: 80%

0.01439

Низкий

7.5 High

CVSS3

CVE ID

CVE-2020-7219

Дефекты

CWE-400

CWE-770

Связанные уязвимости

CVE-2020-7219

CVSS3: 7.5

ubuntu

больше 5 лет назад

HashiCorp Consul and Consul Enterprise up to 1.6.2 HTTP/RPC services allowed unbounded resource usage, and were susceptible to unauthenticated denial of service. Fixed in 1.6.3.

CVE-2020-7219

CVSS3: 7.5

redhat

больше 5 лет назад

HashiCorp Consul and Consul Enterprise up to 1.6.2 HTTP/RPC services allowed unbounded resource usage, and were susceptible to unauthenticated denial of service. Fixed in 1.6.3.

CVE-2020-7219

CVSS3: 7.5

nvd

больше 5 лет назад

HashiCorp Consul and Consul Enterprise up to 1.6.2 HTTP/RPC services allowed unbounded resource usage, and were susceptible to unauthenticated denial of service. Fixed in 1.6.3.

CVE-2020-7219

CVSS3: 7.5

debian

больше 5 лет назад

HashiCorp Consul and Consul Enterprise up to 1.6.2 HTTP/RPC services a ...

EPSS

Процентиль: 80%

0.01439

Низкий

7.5 High

CVSS3

CVE ID

CVE-2020-7219

Дефекты

CWE-400

CWE-770