CVE-2021-41803
Discription

A flaw was found in HashiCorp Consul, where it is vulnerable to a denial of service caused by improper input validation for the node or segment names. By sending a specially-crafted request, a remote, authenticated attacker can cause a denial of service.Read More

References

https://www.cve.org/CVERecord?id=CVE-2021-41803 https://nvd.nist.gov/vuln/detail/CVE-2021-41803 https://discuss.hashicorp.com/t/hcsec-2022-19-consul-auto-config-jwt-authorization-missing-input-validation/44627https://bugzilla.redhat.com/show_bug.cgi?id=2189788

7.1 High

CVSS3

  • Attack Vector
  • Attack Complexity
  • Privileges Required
  • User Interaction
  • Scope
  • Confidentiality Impact
  • Integrity Impact
  • Availability Impact
  • Network
  • Low
  • Low
  • None
  • Unchanged
  • Low
  • None
  • High

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Back to Main
Subscribe for the latest news: