Hashicorp Sentinel vulnerabilities
2 known vulnerabilities affecting hashicorp/sentinel.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2021-44139P3HIGHCVSS 7.5PoCv1.8.22022-03-23
CVE-2021-44139 [HIGH] CWE-918 CVE-2021-44139: Sentinel 1.8.2 is vulnerable to Server-side request forgery (SSRF).
Sentinel 1.8.2 is vulnerable to Server-side request forgery (SSRF).
nvd
CVE-2019-19879P3HIGHCVSS 7.5≤ 0.10.12020-02-14
CVE-2019-19879 [HIGH] CVE-2019-19879: HashiCorp Sentinel up to 0.10.1 incorrectly parsed negation in certain policy expressions. Fixed in
HashiCorp Sentinel up to 0.10.1 incorrectly parsed negation in certain policy expressions. Fixed in 0.10.2.
nvd