Affected by GO-2022-0559
and 10 other vulnerabilities
GO-2022-0559: HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. in github.com/hashicorp/consul
GO-2022-0593: HashiCorp Consul Privilege Escalation Vulnerability in github.com/hashicorp/consul
GO-2022-0615: Hashicorp Consul HTTP health check endpoints returning an HTTP redirect may be abused as SSRF vector in github.com/hashicorp/consul
GO-2022-0776: Denial of Service (DoS) in HashiCorp Consul in github.com/hashicorp/consul
GO-2022-0894: Hashicorp Consul Missing SSL Certificate Validation in github.com/hashicorp/consul
GO-2022-0895: HashiCorp Consul L7 deny intention results in an allow action in github.com/hashicorp/consul
GO-2022-1029: HashiCorp Consul vulnerable to authorization bypass in github.com/hashicorp/consul
GO-2023-1827: Hashicorp Consul vulnerable to denial of service in github.com/hashicorp/consul
GO-2023-1850: HashiCorp Consul can use cleartext agent-to-agent RPC communication in github.com/hashicorp/consul
GO-2023-1851: HashiCorp Consul Cross-site Scripting vulnerability in github.com/hashicorp/consul
GO-2023-1853: HashiCorp Consul vulnerable to Origin Validation Error in github.com/hashicorp/consul
Package agent provides a logical endpoint for Consul agents in the
network. agent data originates from Serf gossip and is primarily used to
communicate Consul server information. Gossiped information that ends up
in Server contains the necessary metadata required for servers.Manager to
select which server an RPC request should be routed to.
type Server struct {
Name string ID string Datacenter string Port int WanJoinPort int Bootstrap bool Expect int Build version.Version
Version int RaftVersion int NonVoter bool Addr net.Addr Status serf.MemberStatus// If true, use TLS when connecting to this server UseTLS bool
}
Server is used to return details of a consul server