CVE-2026-2808 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vulnerable to arbitrary file read when configured with Kubernetes authentication. Th…
Medium CVSS: 6.8

CVE-2026-2808

HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vulnerable to arbitrary file read when configured with Kubernetes authentication. This vulnerability, CVE-2026-2808, is fixed in Consul 1.18.21, 1.21.11 and 1.22.5.
Vendor
-
Product
-
CWE
CWE-59
Yayın Tarihi
2026-03-12 00:16:11
Güncelleme
2026-03-12 21:07:53
Source Identifier
security@hashicorp.com
KEV Date Added
-

Kategoriler

CWE-59 MEDIUM 2026

Referanslar

https://discuss.hashicorp.com/t/hcsec-2026-02-consul-vulnerable-to-arbitrary-file-reads-through-the-vault-kubernetes-authentication-provider/77232