CVE-2021-37219 in Consul
요약
\~에 의해 MITRE • 2021. 09. 07.
HashiCorp Consul and Consul Enterprise 1.10.1 Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.8.15, 1.9.9 and 1.10.2.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.