Lucene search
Veracode Vulnerability DatabaseVERACODE:7997HistoryDec 10, 2018 - 2:32 a.m.
Man-in-the-Middle (MitM)
2018-12-1002:32:27
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.001 Low
EPSS
Percentile
49.8%
github.com/hashicorp/consul is vulnerable to man-in-the-middle. The agent-to-agent RPC communication does not verify the hostname of outgoing connections which results in an insecure plaintext communications channel. This allows an attacker to perform a man-in-the-middle attack against vulnerable clients or servers.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/hashicorp/consul | eq | HEAD | |
| github.com/hashicorp/consul | le | 1.4.0 |
Related
debiancve
debiancve
CVE-2018-19653
2018-12-09 19:29:00
cgr
cgr
CVE-2018-19653 vulnerabilities
2024-05-19 03:07:16
osv
osv
CVE-2018-19653
2018-12-09 19:29:00
HashiCorp Consul can use cleartext agent-to-agent RPC communication
2022-05-14 01:36:20
github
github
HashiCorp Consul can use cleartext agent-to-agent RPC communication
2022-05-14 01:36:20
wolfi
wolfi
CVE-2018-19653 vulnerabilities
2024-07-05 21:08:40
nvd
nvd
CVE-2018-19653
2018-12-09 19:29:00
prion
prion
Design/Logic Flaw
2018-12-09 19:29:00
cve
cve
CVE-2018-19653
2018-12-09 19:29:00
cvelist
cvelist
CVE-2018-19653
2018-12-09 19:00:00
ubuntucve
ubuntucve
CVE-2018-19653
2018-12-09 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2019-0017
2019-06-06 00:00:00
Important Photon OS Security Update - PHSA-2019-3.0-0017
2019-06-06 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0045
2023-07-05 00:00:00
ibm
ibm
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 18:49:23