CVE-2024-10005

Aliases:GHSA-chgm-7r52-whjjBIT-consul-2024-10005GO-2024-3243
Advisory lineage Upstream: 0 Downstream: 5
Modified
Published: 30 Oct 2024, 21:19
Last modified:10 Jan 2025, 13:06

Vulnerability Summary

Overall Risk (default)
medium
32/100
CVSS Score
8.1 HIGH
v3.1 (cve.org)
EPSS Score
0.2% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

30 Oct 2024, 21:19
Published
Vulnerability first disclosed
10 Jan 2025, 13:06
Last Modified
Vulnerability information updated

Description

A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using URL paths in L7 traffic intentions could bypass HTTP request path-based access rules.

CVSS Metrics

  • v4.0HIGHScore: 8.6CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
  • v3.1HIGHScore: 8.1CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
  • v3.1MEDIUMScore: 5.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

EPSS Trends

Current EPSS score: 0.20% Percentile: 42%

Techniques & Countermeasures

  • CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

    The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Affected Systems

  • github.com/hashicorpconsul

    ≥ 1.9.0, < 1.20.1

  • hashicorpconsul

    ≥ 1.9.0, < 1.20.1 | ≥ 1.4.1, < 1.20.1 | ≥ 1.9.0, < 1.15.15 | ≥ 1.18.0, < 1.18.5 | ≥ 1.19.0, < 1.19.3 | 1.20.0

  • hashicorpconsul enterprise

    ≥ 1.9.0, < 1.20.1

References (8)