CVE-2026-2808
published 2026-03-12CVE-2026-2808: HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vulnerable to arbitrary file read when configured with Kubernetes authentication…
PriorityP338medium6.8CVSS 3.1
AVNACLPRHUINSCCHINAN
EPSS
0.47%
37.5th percentile
HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vulnerable to arbitrary file read when configured with Kubernetes authentication. This vulnerability, CVE-2026-2808, is fixed in Consul 1.18.21, 1.21.11 and 1.22.5.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | consul | — | — |
| github.com | hashicorp_consul | >= 0 < 1.18.21 | 1.18.21 |
| github.com | hashicorp_consul | >= 0 < 1.22.5 | 1.22.5 |
| github.com | hashicorp_consul | >= 1.19.0 < 1.21.11 | 1.21.11 |
| github.com | hashicorp_consul | >= 1.22.0-rc1 < 1.22.5 | 1.22.5 |
| hashicorp | consul | < 1.22.5 | 1.22.5 |
| hashicorp | consul_enterprise | < 1.22.5 | 1.22.5 |
CVSS provenance
nvdv3.16.8MEDIUMCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
ghsa6.8MEDIUM
osv6.8MEDIUM
vendor_debian6.8MEDIUM
vendor_redhat6.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Consul is vulnerable to arbitrary file read when configured with Kubernetes authentication in github.com/hashicorp/consul
osv·2026-03-16
CVE-2026-2808 Consul is vulnerable to arbitrary file read when configured with Kubernetes authentication in github.com/hashicorp/consul
Consul is vulnerable to arbitrary file read when configured with Kubernetes authentication in github.com/hashicorp/consul
Consul is vulnerable to arbitrary file read when configured with Kubernetes authentication in github.com/hashicorp/consul
OSV
CVE-2026-2808: HashiCorp Consul and Consul Enterprise 1
osv·2026-03-12·CVSS 6.8
CVE-2026-2808 [MEDIUM] CVE-2026-2808: HashiCorp Consul and Consul Enterprise 1
HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vulnerable to arbitrary file read when configured with Kubernetes authentication. This vulnerability, CVE-2026-2808, is fixed in Consul 1.18.21, 1.21.11 and 1.22.5.
GHSA
Consul is vulnerable to arbitrary file read when configured with Kubernetes authentication
ghsa·2026-03-12·CVSS 6.8
CVE-2026-2808 [MEDIUM] CWE-59 Consul is vulnerable to arbitrary file read when configured with Kubernetes authentication
Consul is vulnerable to arbitrary file read when configured with Kubernetes authentication
HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vulnerable to arbitrary file read when configured with Kubernetes authentication. This vulnerability, CVE-2026-2808, is fixed in Consul 1.18.21, 1.21.11 and 1.22.5.
OSV
Consul is vulnerable to arbitrary file read when configured with Kubernetes authentication
osv·2026-03-12·CVSS 6.8
CVE-2026-2808 [MEDIUM] Consul is vulnerable to arbitrary file read when configured with Kubernetes authentication
Consul is vulnerable to arbitrary file read when configured with Kubernetes authentication
HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vulnerable to arbitrary file read when configured with Kubernetes authentication. This vulnerability, CVE-2026-2808, is fixed in Consul 1.18.21, 1.21.11 and 1.22.5.
Red Hat
github.com/hashicorp/consul: HashiCorp Consul: Arbitrary file read via Kubernetes authentication configuration
vendor_redhat·2026-03-11·CVSS 6.8
CVE-2026-2808 [MEDIUM] CWE-59 github.com/hashicorp/consul: HashiCorp Consul: Arbitrary file read via Kubernetes authentication configuration
github.com/hashicorp/consul: HashiCorp Consul: Arbitrary file read via Kubernetes authentication configuration
HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vulnerable to arbitrary file read when configured with Kubernetes authentication. This vulnerability, CVE-2026-2808, is fixed in Consul 1.18.21, 1.21.11 and 1.22.5.
A flaw was found in HashiCorp Consul. When configured with Kubernetes authentication, a highly privileged attacker can exploit this vulnerability to perform arbitrary file reads. This could lead to the disclosure of sensitive information from the system.
Package: openshift-logging/logging-loki-rhel9 (Logging Subsystem for Red Hat OpenShift) - Not affected
Package: openshift-logging/loki-rhel9-operator (Logging Subsystem for Red Hat OpenShif
Debian
CVE-2026-2808: consul - HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vuln...
vendor_debian·2026·CVSS 6.8
CVE-2026-2808 [MEDIUM] CVE-2026-2808: consul - HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vuln...
HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vulnerable to arbitrary file read when configured with Kubernetes authentication. This vulnerability, CVE-2026-2808, is fixed in Consul 1.18.21, 1.21.11 and 1.22.5.
Scope: local
bullseye: open
No detection rules found.
No public exploits indexed.
2026-03-12
Published