CVE-2022-24687 is a vulnerability in HashiCorp Consul
Published on February 24, 2022
HashiCorp Consul and Consul Enterprise 1.9.0 through 1.9.14, 1.10.7, and 1.11.2 clusters with at least one Ingress Gateway allow a user with service:write to register a specifically-defined service that can cause Consul servers to panic. Fixed in 1.9.15, 1.10.8, and 1.11.3.
Products Associated with CVE-2022-24687
Want to know whenever a new CVE is published for HashiCorp Consul? stack.watch will email you.
Exploit Probability
EPSS
0.64%
Percentile
70.14%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.