← EU Feed

Vigilance.fr - HashiCorp Consul: information disclosure via Kubernetes Authentication, analyzed on 18/05/2026

Vigilance.fr - HashiCorp Consul: information disclosure via Kubernetes Authentication, analyzed on 18/05/2026

AI Briefing

  • • HashiCorp Consul suffers from information disclosure via Kubernetes Authentication.
  • • Attackers can bypass access restrictions to sensitive data via paid plans.
  • • Vulnerability is only available in paid plans of Consul.

Context

An attacker can bypass access restrictions to data of HashiCorp Consul via Kubernetes Authentication. This allows the attacker to read sensitive information.

The vulnerability poses a risk to the security of HashiCorp Consul data, as it enables unauthorized access to sensitive information.

Advertisement
Read Original Article