Vulnerability CVE-2023-1297
Published: 2023-06-02   Modified: 2023-06-03

Description:
Consul and Consul Enterprise's cluster peering implementation contained a flaw whereby a peer cluster with service of the same name as a local service could corrupt Consul state, resulting in denial of service. This vulnerability was resolved in Consul 1.14.5, and 1.15.3

 References:
https://discuss.hashicorp.com/t/hcsec-2023-15-consul-cluster-peering-can-result-in-denial-of-service/54515
Copyright 2024, cxsecurity.com

 

Back to Top