CVE-2024-10005 | HashiCorp Consul/Consul Enterprise up to 1.20.0 HTTP Request path traversal

Inserito da Angelo Barbosa | Ott 31, 2024 | CVE

A vulnerability has been found in HashiCorp Consul and Consul Enterprise up to 1.20.0 and classified as critical. This vulnerability affects unknown code of the component HTTP Request Handler. The manipulation leads to path traversal.

This vulnerability was named CVE-2024-10005. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-10005 | HashiCorp Consul/Consul Enterprise up to 1.20.0 HTTP Request path traversal

Post correlati

CVE-2024-36963 | Linux Kernel up to 6.6.30/6.8.9 tracefs /sys/kernel/tracing current_tracer permission (5f91fc82794d/414fb0862814/baa23a8d4360)

CVE-2024-49639 | Edward Stoever Monitor.chat Plugin up to 1.1.1 on WordPress cross site scripting

CVE-2024-35768 | Live Composer Team Page Builder Plugin up to 1.5.42 on WordPress cross site scripting

CVE-2022-25777 | Mautic MST-48 server-side request forgery