Security Advisory

CVE-2021-32574

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-17 17:28:11

Last updated 2024-08-03 23:25:30

Assigner mitre

State PUBLISHED

Description

HashiCorp Consul and Consul Enterprise 1.3.0 through 1.10.0 Envoy proxy TLS configuration does not validate destination service identity in the encoded subject alternative name. Fixed in 1.8.14, 1.9.8, and 1.10.1.

← Browse all CVEs View on cve.org ↗