github.com/hashicorp/consul is vulnerable to privilege escalation. The vulnerability exists because ACL tokens in one namespace can be used to bypass security restrictions in a different namespace when they contain default operator:write
permissions.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/hashicorp/consul | le | v1.11.6 | |
github.com/hashicorp/consul | le | v1.11.6 |
discuss.hashicorp.com/t/hcsec-2021-29-consul-enterprise-namespace-default-acls-allow-privilege-escalation/31871
github.com/hashicorp/consul/commit/b50ef696c67117af8cbd32c854aa04c334273dab
github.com/hashicorp/consul/pull/11812
security.netapp.com/advisory/ntap-20211229-0007/
www.hashicorp.com/blog/category/consul