CVE-2021-28156

Опубликовано: 20 апр. 2021

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

HashiCorp Consul Enterprise version 1.8.0 up to 1.9.4 audit log can be bypassed by specifically crafted HTTP events. Fixed in 1.9.5, and 1.8.10.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needs-triage
groovy	ignored	end of life
hirsute	ignored	end of life
impish	ignored	end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 79%

0.01279

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2021-28156

CVSS3: 7.5

redhat

почти 5 лет назад

HashiCorp Consul Enterprise version 1.8.0 up to 1.9.4 audit log can be bypassed by specifically crafted HTTP events. Fixed in 1.9.5, and 1.8.10.

CVE-2021-28156

CVSS3: 7.5

nvd

почти 5 лет назад

HashiCorp Consul Enterprise version 1.8.0 up to 1.9.4 audit log can be bypassed by specifically crafted HTTP events. Fixed in 1.9.5, and 1.8.10.

CVE-2021-28156

CVSS3: 7.5

debian

почти 5 лет назад

HashiCorp Consul Enterprise version 1.8.0 up to 1.9.4 audit log can be ...

GHSA-jw67-86pq-v324

CVSS3: 7.5

github

больше 3 лет назад

HashiCorp Consul Enterprise version 1.8.0 up to 1.9.4 audit log can be bypassed by specifically crafted HTTP events. Fixed in 1.9.5, and 1.8.10.

EPSS

Процентиль: 79%

0.01279

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2021-28156

Описание

Пакет consul

Ссылки на источники

Связанные уязвимости