Consul and Consul Enterprise allowed an authenticated user with service:write permissions to trigger a workflow that causes Consul server and client agents to crash under certain circumstances. This vulnerability was fixed in Consul 1.14.5.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: HashiCorp

Published: 2023-03-09T15:14:26.581Z

Updated: 2024-08-02T05:24:34.464Z

Reserved: 2023-02-15T15:53:44.942Z

Link: CVE-2023-0845

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-03-09T16:15:09.657

Modified: 2024-11-21T07:37:56.660

Link: CVE-2023-0845

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-03-09T00:00:00Z

Links: CVE-2023-0845 - Bugzilla