← volver
CVE-2020-13170

CVE-2020-13170

EPSS 1.7%
HashiCorp Consul and Consul Enterprise did not appropriately enforce scope for local tokens issued by a primary data center, where replication to a secondary data center was not enabled. Introduced in 1.4.0, fixed in 1.6.6 and 1.7.4.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/hashicorp/consul/blob/v1.6.6/CHANGELOG.mdhttps://github.com/hashicorp/consul/blob/v1.7.4/CHANGELOG.mdhttps://github.com/hashicorp/consul/pull/8068