pkg:Debian/consul

All known vulnerabilities

• HIGH8.8CVE-2021-37219HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul
  from 0
• HIGH8.3CVE-2024-10006Consul L7 Intentions Vulnerable To Headers Bypass
  from 0
• HIGH8.1CVE-2024-10005Consul L7 Intentions Vulnerable To URL Path Bypass
  from 0
• HIGH8.1Dependency on Vulnerable Third-Party Component in GitLab
  from 0
• HIGH7.5Denial of service in HashiCorp Consul in github.com/hashicorp/consul
  from 0, < 1.8.6+dfsg1-1
• HIGH7.5HashiCorp Consul Incorrect Access Control vulnerability in github.com/hashicorp/consul
  from 0, < 1.4.5+dfsg1-1
• HIGH7.5Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul
  from 0
• HIGH7.5Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul
  from 0
• HIGH7.5Allocation of Resources Without Limits or Throttling in Hashicorp Consul in github.com/hashicorp/consul
  from 0, < 1.7.4+dfsg1-1
• HIGH7.5Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul
  from 0, < 1.7.0+dfsg1-1
• HIGH7.1Improper handling of node names in JWT claims assertions in github.com/hashicorp/consul
  from 0
• MEDIUM6.8Consul vulnerable to arbitrary file reads through the vault kubernetes authentication provider
  from 0
• MEDIUM6.5Consul's KV endpoint is vulnerable to denial of service
  from 0
• MEDIUM6.5Consul's event endpoint is vulnerable to denial of service
  from 0
• MEDIUM6.5Privilege Escalation in HashiCorp Consul in github.com/hashicorp/consul
  from 0, < 1.8.6+dfsg1-1
• MEDIUM6.5HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul
  from 0
• MEDIUM6.5HashiCorp Consul Ingress Gateway Panic Can Shutdown Servers in github.com/hashicorp/consul
  from 0
• MEDIUM6.5HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul
  from 0
• MEDIUM6.1Consul Vulnerable To Reflected XSS On Content-Type Error Manipulation
  from 0
• MEDIUM6.1HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul
  from 0, < 1.8.7+dfsg1-2
• MEDIUM5.9HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul
  from 0, < 1.4.4~dfsg1-1
• MEDIUM5.3Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul
  from 0, < 1.7.4+dfsg1-1
• MEDIUM5.3Incorrect Authorization in HashiCorp Consul in github.com/hashicorp/consul
  from 0, < 1.7.0+dfsg1-1
• MEDIUM5.3Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul
  from 0, < 1.7.4+dfsg1-1
• MEDIUM5.3Improper Input Validation in HashiCorp Consul in github.com/hashicorp/consul
  from 0, < 1.7.4+dfsg1-1