CVE-2024-10006
published 2024-10-30CVE-2024-10006: A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using Headers in L7 traffic intentions could bypass HTTP header based…
PriorityP432medium5.8CVSS 3.1
AVNACLPRNUINSCCNILAN
EPSS
0.47%
37.4th percentile
A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using Headers in L7 traffic intentions could bypass HTTP header based access rules.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | consul | — | — |
| github.com | hashicorp_consul | >= 1.9.0 < 1.20.1 | 1.20.1 |
| github.com | icewhaletech_casaos-userservice | >= 0 < 0.4.8 | 0.4.8 |
| github.com | icewhaletech_casaos-userservice | >= 0.4.7 < 0.4.8 | 0.4.8 |
| hashicorp | consul | — | — |
| hashicorp | consul | >= 1.18.0 < 1.18.5 | 1.18.5 |
| hashicorp | consul | >= 1.19.0 < 1.19.3 | 1.19.3 |
| hashicorp | consul | >= 1.4.1 < 1.20.1 | 1.20.1 |
| hashicorp | consul | >= 1.9.0 < 1.20.1 | 1.20.1 |
| hashicorp | consul | >= 1.9.0 < 1.15.15 | 1.15.15 |
| hashicorp | consul_enterprise | >= 1.9.0 < 1.20.1 | 1.20.1 |
CVSS provenance
nvdv3.15.8MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
ghsa7.5HIGH
osv5.8MEDIUM
vendor_debian8.3HIGH
vendor_redhat8.3HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
hashicorp/consul: consul: Consul L7 Intentions Vulnerable To Headers Bypass
vendor_redhat·2024-10-30·CVSS 8.3
CVE-2024-10006 [HIGH] CWE-644 hashicorp/consul: consul: Consul L7 Intentions Vulnerable To Headers Bypass
hashicorp/consul: consul: Consul L7 Intentions Vulnerable To Headers Bypass
A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using Headers in L7 traffic intentions could bypass HTTP header based access rules.
A flaw was found in HashiCorp Consul and Consul Enterprise. The server response does not explicitly set a Content-Type HTTP header, allowing user-provided inputs to be misinterpreted and can lead to reflected cross-site scripting (XSS).
Statement: This vulnerability is rated as important severity because HashiCorp Consul fails to set a Content-Type HTTP header, allowing user inputs to be misinterpreted and potentially leading to reflected cross-site scripting (XSS). This can compromise both confidentiality and integrity, posing a risk to user data
Debian
CVE-2024-10006: consul - A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such t...
vendor_debian·2024·CVSS 8.3
CVE-2024-10006 [HIGH] CVE-2024-10006: consul - A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such t...
A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using Headers in L7 traffic intentions could bypass HTTP header based access rules.
Scope: local
bullseye: open
OSV
Hashicorp Consul Improper Neutralization of HTTP Headers for Scripting Syntax vulnerability in github.com/hashicorp/consul
osv·2024-11-04
CVE-2024-10006 Hashicorp Consul Improper Neutralization of HTTP Headers for Scripting Syntax vulnerability in github.com/hashicorp/consul
Hashicorp Consul Improper Neutralization of HTTP Headers for Scripting Syntax vulnerability in github.com/hashicorp/consul
Hashicorp Consul Improper Neutralization of HTTP Headers for Scripting Syntax vulnerability in github.com/hashicorp/consul
OSV
Hashicorp Consul Improper Neutralization of HTTP Headers for Scripting Syntax vulnerability
osv·2024-10-31
CVE-2024-10006 [MEDIUM] Hashicorp Consul Improper Neutralization of HTTP Headers for Scripting Syntax vulnerability
Hashicorp Consul Improper Neutralization of HTTP Headers for Scripting Syntax vulnerability
A vulnerability was identified in Consul and Consul Enterprise ("Consul") such that using Headers in L7 traffic intentions could bypass HTTP header based access rules.
GHSA
Hashicorp Consul Improper Neutralization of HTTP Headers for Scripting Syntax vulnerability
ghsa·2024-10-31
CVE-2024-10006 [MEDIUM] CWE-116 Hashicorp Consul Improper Neutralization of HTTP Headers for Scripting Syntax vulnerability
Hashicorp Consul Improper Neutralization of HTTP Headers for Scripting Syntax vulnerability
A vulnerability was identified in Consul and Consul Enterprise ("Consul") such that using Headers in L7 traffic intentions could bypass HTTP header based access rules.
OSV
CVE-2024-10006: A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using Headers in L7 traffic intentions could bypass HTTP header ba
osv·2024-10-30·CVSS 5.8
CVE-2024-10006 [MEDIUM] CVE-2024-10006: A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using Headers in L7 traffic intentions could bypass HTTP header ba
A vulnerability was identified in Consul and Consul Enterprise (“Consul”) such that using Headers in L7 traffic intentions could bypass HTTP header based access rules.
OSV
Login username enumeration in github.com/IceWhaleTech/CasaOS-UserService
osv·2024-04-02
CVE-2024-28232 Login username enumeration in github.com/IceWhaleTech/CasaOS-UserService
Login username enumeration in github.com/IceWhaleTech/CasaOS-UserService
The Casa OS Login page has a username enumeration vulnerability in the login page that was patched in Casa OS v0.4.7. The issue exists because the application response differs depending on whether the username or password is incorrect, allowing an attacker to enumerate usernames by observing the application response. For example, if the username is incorrect, the application returns "User does not exist" with return code "10006", while if the password is incorrect, it returns "User does not exist or password is invalid" with return code "10013". This allows an attacker to determine if a username exists without knowing the password.
GHSA
CasaOS Username Enumeration - Bypass of CVE-2024-24766
ghsa·2024-04-01·CVSS 7.5
CVE-2024-28232 [MEDIUM] CWE-204 CasaOS Username Enumeration - Bypass of CVE-2024-24766
CasaOS Username Enumeration - Bypass of CVE-2024-24766
### Summary
The Casa OS Login page has disclosed the username enumeration vulnerability in the login page which was patched in `CasaOS v0.4.7`.
### Details
It is observed that the attacker can enumerate the CasaOS username using the application response. If the username is incorrect the application gives the error "**User does not exist**" with success code "**10006**", If the password is incorrect the application gives the error "**User does not exist or password is invalid**" with success code "**10013**".
### PoC
1. If the Username is invalid application gives "User does not exist" with success code "**10006**".
2. If the Password is invalid application gives "**User does not exist or password is invalid**" with success code
No detection rules found.
No public exploits indexed.
2024-10-30
Published