VYPR
Moderate severityNVD Advisory· Published Dec 9, 2018· Updated Aug 5, 2024

CVE-2018-19653

CVE-2018-19653

Description

HashiCorp Consul 0.5.1 through 1.4.0 can use cleartext agent-to-agent RPC communication because the verify_outgoing setting is improperly documented. NOTE: the vendor has provided reconfiguration steps that do not require a software upgrade.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/hashicorp/consulGo
>= 0.5.1, < 1.4.11.4.1

Affected products

7

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.