Search for packages
| purl | pkg:ebuild/app-admin/consul@1.9.17 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-65ru-yj23-qqbr | HashiCorp Consul L7 deny intention results in an allow action In HashiCorp Consul before 1.10.1 (and Consul Enterprise), xds can generate a situation where a single L7 deny intention (with a default deny policy) results in an allow action. |
CVE-2021-36213
GHSA-8h2g-r292-j8xh |
| VCID-ftvt-9nb3-xue3 | Multiple vulnerabilities have been discovered in HashiCorp Consul, the worst of which could result in denial of service. |
CVE-2020-25864
GHSA-8xmx-h8rq-h94j |
| VCID-gsqu-g2y4-a7ap | Privilege Escalation in HashiCorp Consul HashiCorp Consul and Consul Enterprise 1.2.0 up to 1.8.5 allowed operators with operator:read ACL permissions to read the Connect CA private key configuration. Fixed in 1.6.10, 1.7.10, and 1.8.6. |
CVE-2020-28053
GHSA-6m72-467w-94rh |
| VCID-jfzf-ynb1-23bs | Hashicorp Consul Missing SSL Certificate Validation HashiCorp Consul before 1.10.1 (and Consul Enterprise) has Missing SSL Certificate Validation. xds does not ensure that the Subject Alternative Name of an upstream is validated. |
CVE-2021-32574
GHSA-25gf-8qrr-g78r |
| VCID-met8-vmhb-cueu | Multiple vulnerabilities have been discovered in HashiCorp Consul, the worst of which could result in denial of service. |
CVE-2022-29153
GHSA-q6h7-4qgw-2j9p |
| VCID-mv9z-hxmr-skfp | Denial of service in HashiCorp Consul HashiCorp Consul Enterprise versions 1.7.0 up to 1.7.8 and 1.8.0 up to 1.8.4 includes a namespace replication bug which can be triggered to cause denial of service via infinite Raft writes. Fixed in 1.7.9 and 1.8.5. |
CVE-2020-25201
GHSA-496g-fr33-whrf |
| VCID-tfrv-ak5x-5qg7 | Multiple vulnerabilities have been discovered in HashiCorp Consul, the worst of which could result in denial of service. |
CVE-2021-28156
|
| VCID-tgcs-1brz-6yf4 | HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. Fixed in 1.8.15, 1.9.9 and 1.10.2. |
CVE-2021-38698
GHSA-6hw5-6gcx-phmw |
| VCID-ysg6-921d-d7fe | Multiple vulnerabilities have been discovered in HashiCorp Consul, the worst of which could result in denial of service. |
CVE-2022-24687
GHSA-hj93-5fg3-3chr |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T13:04:42.223723+00:00 | Gentoo Importer | Fixing | VCID-met8-vmhb-cueu | https://security.gentoo.org/glsa/202208-09 | 38.0.0 |
| 2026-04-01T13:04:42.213354+00:00 | Gentoo Importer | Fixing | VCID-ysg6-921d-d7fe | https://security.gentoo.org/glsa/202208-09 | 38.0.0 |
| 2026-04-01T13:04:42.201395+00:00 | Gentoo Importer | Fixing | VCID-tgcs-1brz-6yf4 | https://security.gentoo.org/glsa/202208-09 | 38.0.0 |
| 2026-04-01T13:04:42.190906+00:00 | Gentoo Importer | Fixing | VCID-65ru-yj23-qqbr | https://security.gentoo.org/glsa/202208-09 | 38.0.0 |
| 2026-04-01T13:04:42.179971+00:00 | Gentoo Importer | Fixing | VCID-jfzf-ynb1-23bs | https://security.gentoo.org/glsa/202208-09 | 38.0.0 |
| 2026-04-01T13:04:42.168833+00:00 | Gentoo Importer | Fixing | VCID-tfrv-ak5x-5qg7 | https://security.gentoo.org/glsa/202208-09 | 38.0.0 |
| 2026-04-01T13:04:42.153505+00:00 | Gentoo Importer | Fixing | VCID-gsqu-g2y4-a7ap | https://security.gentoo.org/glsa/202208-09 | 38.0.0 |
| 2026-04-01T13:04:42.140132+00:00 | Gentoo Importer | Fixing | VCID-ftvt-9nb3-xue3 | https://security.gentoo.org/glsa/202208-09 | 38.0.0 |
| 2026-04-01T13:04:42.127617+00:00 | Gentoo Importer | Fixing | VCID-mv9z-hxmr-skfp | https://security.gentoo.org/glsa/202208-09 | 38.0.0 |