|
HCSEC-2022-10 - Consul’s HTTP Health Check May Allow Server Side Request Forgery
|
|
0
|
921
|
April 15, 2022
|
|
HCSEC-2022-07 - Consul’s Connect Service Mesh Affected By Recent Envoy Security Releases
|
|
0
|
306
|
March 1, 2022
|
|
HCSEC-2022-05 - Consul Ingress Gateway Panic Can Shutdown Servers
|
|
0
|
1073
|
February 15, 2022
|
|
HCSEC-2021-34 - Vault, Consul, Boundary, and Waypoint Affected By Denial of Service in Golang’s net/http (CVE-2021-44716)
|
|
0
|
873
|
December 22, 2021
|
|
HCSEC-2021-29 - Consul Enterprise Namespace Default ACLs Allow Privilege Escalation
|
|
0
|
1264
|
November 13, 2021
|
|
HCSEC-2021-24 - Consul Missing Authorization Check on Txn.Apply Endpoint
|
|
0
|
1324
|
September 1, 2021
|
|
HCSEC-2021-23 - Consul Exposed to Denial of Service in GoGo Protobuf Dependency
|
|
0
|
1787
|
September 1, 2021
|
|
HCSEC-2021-22 - Consul Raft RPC Privilege Escalation
|
|
0
|
1921
|
September 1, 2021
|
|
HCSEC-2021-17 - Consul’s Envoy TLS Configuration Did Not Validate Destination Service Subject Alternative Names
|
|
0
|
1258
|
July 15, 2021
|
|
HCSEC-2021-16 Consul’s Application-Aware Intentions Deny Action Fails Open When Combined With Default Deny Policy
|
|
0
|
1203
|
July 15, 2021
|
|
HCSEC-2021-12 - Codecov Security Event and HashiCorp GPG Key Exposure
|
|
2
|
49360
|
May 4, 2021
|
|
HCSEC-2020-22 - Consul Operator Read ACL Enables Connect Service Masquerading
|
|
0
|
569
|
November 25, 2020
|
|
HCSEC-2021-08 - Consul Enterprise Audit Log Bypass for HTTP Events
|
|
0
|
1515
|
April 19, 2021
|
|
HCSEC-2021-07 - Consul API KV Endpoint Vulnerable to Cross-Site Scripting
|
|
0
|
1687
|
April 19, 2021
|
|
HCSEC-2020-19 - Consul Enterprise Namespace Config Entry Replication Denial of Service
|
|
0
|
525
|
November 25, 2020
|
|
HCSEC2020-14 - Consul DNS and HTTP Cache Abuse Denial of Service
|
|
0
|
524
|
November 25, 2020
|
|
HCSEC-2020-12 - Consul Local ACL Token Can Be Used in Remote Datacenters
|
|
0
|
505
|
November 25, 2020
|
|
HCSEC-2020-11 - Consul Legacy ACL Permission Changes Not Propagated to Secondary Datacenters
|
|
0
|
491
|
November 25, 2020
|
|
HCSEC-2020-10 - Consul Server Crash With Invalid Service-Router Config Entry
|
|
0
|
467
|
November 25, 2020
|
|
HCSEC-2020-04 - Consul's Health Check API Endpoints May Disclose Information
|
|
0
|
498
|
November 25, 2020
|
|
HCSEC-2020-02 - Consul’s HTTP/RPC Services Allow Unbounded Resource Usage, Susceptible to Unauthenticated Denial of Service
|
|
0
|
552
|
November 25, 2020
|