vulnerability

Alpine Linux: CVE-2022-40716: Unchecked Return Value

Severity
7
CVSS
(AV:N/AC:L/Au:S/C:N/I:C/A:N)
Published
Sep 23, 2022
Added
Aug 22, 2024
Modified
Oct 2, 2024

Description

HashiCorp Consul and Consul Enterprise up to 1.11.8, 1.12.4, and 1.13.1 do not check for multiple SAN URI values in a CSR on the internal RPC endpoint, enabling leverage of privileged access to bypass service mesh intentions. Fixed in 1.11.9, 1.12.5, and 1.13.2."

Solution

alpine-linux-upgrade-consul
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.