Main Vulnerability Database SB2021121609

SB2021121609 - Improper access control in HashiCorp Consul Enterprise

Published: December 16, 2021 Updated: December 7, 2022

Security Bulletin ID SB2021121609

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper access control (CVE-ID: CVE-2021-41805)

The vulnerability allows a remote user to gain unauthorized access to sensitive information.

The vulnerability exists due to improper access restrictions. An ACL token (with the default operator:write permissions) in one namespace can be used for unintended privilege escalation in a different namespace. A remote user can send a specially crafted request and gain unauthorized access to the affected application.

Remediation

Install update from vendor's website.

References

https://discuss.hashicorp.com/t/hcsec-2021-29-consul-enterprise-namespace-default-acls-allow-privilege-escalation/31871
https://github.com/hashicorp/consul/releases/tag/v1.10.4
https://github.com/hashicorp/consul/releases/tag/v1.9.11
https://github.com/hashicorp/consul/releases/tag/v1.8.17