CVE-2020-13170

Опубликовано: 11 июн. 2020

Источник: ubuntu

Приоритет: medium

CVSS2: 5

CVSS3: 7.5

Описание

HashiCorp Consul and Consul Enterprise did not appropriately enforce scope for local tokens issued by a primary data center, where replication to a secondary data center was not enabled. Introduced in 1.4.0, fixed in 1.6.6 and 1.7.4.

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	DNE
eoan	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/focal	needed
esm-apps/jammy	not-affected	1.7.4+dfsg1-1
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needed
groovy	not-affected	1.7.4+dfsg1-1
hirsute	not-affected	1.7.4+dfsg1-1

Показывать по

Ссылки на источники

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2020-13170

CVSS3: 7.5

nvd

больше 5 лет назад

CVE-2020-13170

CVSS3: 7.5

debian

больше 5 лет назад

HashiCorp Consul and Consul Enterprise did not appropriately enforce s ...

GHSA-p2j5-3f4c-224r

CVSS3: 5.3

github

больше 4 лет назад

Improper Input Validation in HashiCorp Consul

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2020-13170

Описание

Пакет consul

Ссылки на источники

Связанные уязвимости