Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:golang/github.com/hashicorp/consul@1.15.3
purl pkg:golang/github.com/hashicorp/consul@1.15.3
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-pqcu-293u-vbhp Hashicorp Consul allows user with service:write permissions to patch remote proxy instances Consul and Consul Enterprise allowed any user with service:write permissions to use Envoy extensions configured via service-defaults to patch remote proxy instances that target the configured service, regardless of whether the user has permission to modify the service(s) corresponding to those modified proxies. CVE-2023-2816
GHSA-rqjq-ww83-wv5c
VCID-tn8b-w652-1ydg Hashicorp Consul vulnerable to denial of service Consul and Consul Enterprise's cluster peering implementation contained a flaw whereby a peer cluster with service of the same name as a local service could corrupt Consul state, resulting in denial of service. This vulnerability was resolved in Consul 1.14.5, and 1.15.3 CVE-2023-1297
GHSA-c57c-7hrj-6q6v

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T12:59:09.000912+00:00 GithubOSV Importer Fixing VCID-tn8b-w652-1ydg https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/06/GHSA-c57c-7hrj-6q6v/GHSA-c57c-7hrj-6q6v.json 38.0.0
2026-04-01T12:59:07.367231+00:00 GithubOSV Importer Fixing VCID-pqcu-293u-vbhp https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/06/GHSA-rqjq-ww83-wv5c/GHSA-rqjq-ww83-wv5c.json 38.0.0