Denial of Service Vulnerability in HashiCorp Consul and Consul Enterprise's HTTP API and DNS Caching Feature

Denial of Service Vulnerability in HashiCorp Consul and Consul Enterprise's HTTP API and DNS Caching Feature

CVE-2020-13250 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

HashiCorp Consul and Consul Enterprise include an HTTP API (introduced in 1.2.0) and DNS (introduced in 1.4.3) caching feature that was vulnerable to denial of service. Fixed in 1.6.6 and 1.7.4.

Learn more about our Api Penetration Testing.