CVE-2023-0845

Consul and Consul Enterprise allowed an authenticated user with service:write permissions to trigger a workflow that causes Consul server and client agents to crash under certain circumstances. This vulnerability was fixed in Consul 1.14.5.
Configurations

Configuration 1 (hide)

cpe:2.3:a:hashicorp:consul:*:*:*:*:-:*:*:*

History

15 Sep 2023, 21:15

Type Values Removed Values Added
References
  • (MISC) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XNF4OLYZRQE75EB5TW5N42FSXHBXGWFE/ -

05 Sep 2023, 03:15

Type Values Removed Values Added
References
  • (MISC) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LYZOKMMVX4SIEHPJW3SJUQGMO5YZCPHC/ -

30 Aug 2023, 04:15

Type Values Removed Values Added
References
  • (MISC) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZTE4ITXXPIWZEQ4HYQCB6N6GZIMWXDAI/ -

Information

Published : 2023-03-09 16:15

Updated : 2024-02-28 19:51


NVD link : CVE-2023-0845

Mitre link : CVE-2023-0845

CVE.ORG link : CVE-2023-0845


JSON object : View

Products Affected

hashicorp

  • consul
CWE
CWE-476

NULL Pointer Dereference