GHSA-q2qr-3c2p-9235

Опубликовано: 15 фев. 2022

Источник: github

Github: Прошло ревью

CVSS3: 5.3

Описание

Denial of Service (DoS) in HashiCorp Consul

HashiCorp Consul and Consul Enterprise could crash when configured with an abnormally-formed service-router entry. Introduced in 1.6.0, fixed in 1.6.6 and 1.7.4.

Specific Go Packages Affected

github.com/hashicorp/consul/agent/consul/discoverychain

Ссылки

Пакеты

Наименование

github.com/hashicorp/consul

Затронутые версииВерсия исправления

>= 1.6.0-beta1, < 1.6.6

1.6.6

Наименование

github.com/hashicorp/consul

Затронутые версииВерсия исправления

>= 1.7.0, < 1.7.4

1.7.4

EPSS

Процентиль: 70%

0.0063

Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2020-12758

Дефекты

CWE-400

Связанные уязвимости

CVE-2020-12758

CVSS3: 7.5

ubuntu

больше 5 лет назад

HashiCorp Consul and Consul Enterprise could crash when configured with an abnormally-formed service-router entry. Introduced in 1.6.0, fixed in 1.6.6 and 1.7.4.

CVE-2020-12758

CVSS3: 7.5

nvd

больше 5 лет назад

HashiCorp Consul and Consul Enterprise could crash when configured with an abnormally-formed service-router entry. Introduced in 1.6.0, fixed in 1.6.6 and 1.7.4.

CVE-2020-12758

CVSS3: 7.5

debian

больше 5 лет назад

HashiCorp Consul and Consul Enterprise could crash when configured wit ...

EPSS

Процентиль: 70%

0.0063

Низкий

5.3 Medium

CVSS3

CVE ID

CVE-2020-12758

Дефекты

CWE-400