CGA-qgh6-gr3q-8jp4

Published

Last updated

https://images.chainguard.dev/security/CGA-qgh6-gr3q-8jp4

Package

k3d

Latest Update

Fixed

Fixed Version

5.6.0-r11

Aliases

Severity

8.8

High

CVSS V3

Summary

HashiCorp Consul Privilege Escalation Vulnerability

Description

HashiCorp Consul and Consul Enterprise 1.10.1 Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.8.15, 1.9.9 and 1.10.2.

References

Updates

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CGA-qgh6-gr3q-8jp4

Severity

Summary

Description

References

Updates

Product

Why Chainguard

Customers

Company

Resources