CVE-2019-12291

Posted on 2019년 6월 7일2019년 6월 7일 by admin

CVE-2019-12291

HashiCorp Consul 1.4.0 through 1.5.0 has Incorrect Access Control. Keys not matching a specific ACL rule used for prefix matching in a policy can be deleted by a token using that policy even with default deny settings configured.

Source: CVE-2019-12291

답글 남기기 응답 취소