CVE-2019-8336 is a vulnerability in HashiCorp Consul
Published on March 5, 2019
HashiCorp Consul (and Consul Enterprise) 1.4.x before 1.4.3 allows a client to bypass intended access restrictions and obtain the privileges of one other arbitrary token within secondary datacenters, because a token with literally "<hidden>" as its secret is used in unusual circumstances.
Products Associated with CVE-2019-8336
Want to know whenever a new CVE is published for HashiCorp Consul? stack.watch will email you.
Exploit Probability
EPSS
0.36%
Percentile
57.85%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.