CVE-2024-10005 | HashiCorp Consul/Consul Enterprise up to 1.20.0 HTTP Request path traversal

Inserito da Angelo Barbosa | Ott 31, 2024 | CVE

A vulnerability has been found in HashiCorp Consul and Consul Enterprise up to 1.20.0 and classified as critical. This vulnerability affects unknown code of the component HTTP Request Handler. The manipulation leads to path traversal.

This vulnerability was named CVE-2024-10005. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-10005 | HashiCorp Consul/Consul Enterprise up to 1.20.0 HTTP Request path traversal

Post correlati

CVE-2024-8578 | TOTOLINK AC1200 T8 4.1.5cu.861_B20230220 /cgi-bin/cstecgi.cgi setWiFiMeshName device_name buffer overflow

CVE-2023-46687 | Emerson Rosemount GC370XA 4.1.5 command injection (icsa-24-030-01)

CVE-2024-7861 | Misiek Paypal Plugin up to 1.1.20090324 on WordPress cross-site request forgery

CVE-2024-4635 | ThemeIsle Menu Icons Plugin up to 0.13.13 on WordPress SVG Upload cross site scripting