Description Consul is a service networking solution to automate network configurations, discover services, and enable secure connectivity across any cloud or runtime. Consul API is designed to be accessed inside trusted environments. It's not recommended to have Consul API publicly accessible. ...
Given the above conditions, an attacker can register a check on a remote agent with a maliciouspayload. By design, script checks allow arbitrary code execution, so allowing service registration with checks enabled via an exposed API presents an RCE (remote code execution) threat. Consul's early ...
Given the above conditions, an attacker can register a check on a remote agent with a malicious payload. By design, script checks allow arbitrary code execution, so allowing service registration with checks enabled via an exposed API presents an RCE (remote code execution) threat. Consul's early...