VulnerableCode Package Details - pkg:alpm/archlinux/consul@1.9.7-1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:alpm/archlinux/consul@1.9.7-1

Essentials
History (2)

purl	pkg:alpm/archlinux/consul@1.9.7-1

Next non-vulnerable version	1.9.8-1
Latest non-vulnerable version	1.10.2-1
Risk	4.0

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-65ru-yj23-qqbr Aliases: CVE-2021-36213 GHSA-8h2g-r292-j8xh	HashiCorp Consul L7 deny intention results in an allow action In HashiCorp Consul before 1.10.1 (and Consul Enterprise), xds can generate a situation where a single L7 deny intention (with a default deny policy) results in an allow action.	1.9.8-1 Affected by 0 other vulnerabilities.
VCID-jfzf-ynb1-23bs Aliases: CVE-2021-32574 GHSA-25gf-8qrr-g78r	Hashicorp Consul Missing SSL Certificate Validation HashiCorp Consul before 1.10.1 (and Consul Enterprise) has Missing SSL Certificate Validation. xds does not ensure that the Subject Alternative Name of an upstream is validated.	1.9.8-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T18:26:38.964631+00:00	Arch Linux Importer	Affected by	VCID-jfzf-ynb1-23bs	https://security.archlinux.org/AVG-2171	38.0.0
2026-04-01T18:26:38.940017+00:00	Arch Linux Importer	Affected by	VCID-65ru-yj23-qqbr	https://security.archlinux.org/AVG-2171	38.0.0