CVE-2020-7955

Опубликовано: 31 янв. 2020

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5

CVSS3: 5.3

Описание

HashiCorp Consul and Consul Enterprise 1.4.1 through 1.6.2 did not uniformly enforce ACLs across all API endpoints, resulting in potential unintended information disclosure. Fixed in 1.6.3.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
eoan	ignored	end of life
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needs-triage
groovy	ignored	end of life
hirsute	ignored	end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 56%

0.00332

Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2020-7955

CVSS3: 5.3

redhat

около 6 лет назад

HashiCorp Consul and Consul Enterprise 1.4.1 through 1.6.2 did not uniformly enforce ACLs across all API endpoints, resulting in potential unintended information disclosure. Fixed in 1.6.3.

CVE-2020-7955

CVSS3: 5.3

nvd

около 6 лет назад

HashiCorp Consul and Consul Enterprise 1.4.1 through 1.6.2 did not uniformly enforce ACLs across all API endpoints, resulting in potential unintended information disclosure. Fixed in 1.6.3.

CVE-2020-7955

CVSS3: 5.3

debian

около 6 лет назад

HashiCorp Consul and Consul Enterprise 1.4.1 through 1.6.2 did not uni ...

GHSA-r9w6-rhh9-7v53

CVSS3: 5.3

github

больше 4 лет назад

Incorrect Authorization in HashiCorp Consul

EPSS

Процентиль: 56%

0.00332

Низкий

5 Medium

CVSS2

5.3 Medium

CVSS3

CVE-2020-7955

Описание

Пакет consul

Ссылки на источники

Связанные уязвимости