CVE-2020-28053

Опубликовано: 23 нояб. 2020

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 4

CVSS3: 6.5

Описание

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needs-triage
groovy	ignored	end of life
hirsute	ignored	end of life
impish	ignored	end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 49%

0.00257

Низкий

4 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2020-28053

CVSS3: 6.5

nvd

около 5 лет назад

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6.

CVE-2020-28053

CVSS3: 6.5

debian

около 5 лет назад

HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed opera ...

GHSA-6m72-467w-94rh

CVSS3: 6.5

github

около 2 лет назад

Privilege Escalation in HashiCorp Consul

EPSS

Процентиль: 49%

0.00257

Низкий

4 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2020-28053

Описание

Пакет consul

Ссылки на источники

Связанные уязвимости