Описание
Consul and Consul Enterprise's cluster peering implementation contained a flaw whereby a peer cluster with service of the same name as a local service could corrupt Consul state, resulting in denial of service. This vulnerability was resolved in Consul 1.14.5, and 1.15.3
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | DNE | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | needs-triage | |
| kinetic | ignored | end of life, was needs-triage |
| lunar | DNE | |
| mantic | ignored | end of life, was needs-triage |
Показывать по
EPSS
4.9 Medium
CVSS3
Связанные уязвимости
Consul and Consul Enterprise's cluster peering implementation contained a flaw whereby a peer cluster with service of the same name as a local service could corrupt Consul state, resulting in denial of service. This vulnerability was resolved in Consul 1.14.5, and 1.15.3
Consul and Consul Enterprise's cluster peering implementation containe ...
Hashicorp Consul vulnerable to denial of service
Уязвимость инструмента настройки сервисов Consul и Consul Enterprise, связанная с преждевременным высвобождением ресурсов в течение ожидаемого срока службы, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.9 Medium
CVSS3