Detections
Analytics

Hashicorp Consul Web UI and API access

high Nessus Plugin ID 111351

Language:

Synopsis

Hashicorp Consul Web UI and API is accessible remotely if not configured properly.

Description

A remote, unauthenticated attacker may able to access Consul Web UI and API to gather data, register services and gain remote access.

Solution

Only allow localhost connections, set up firewall and ACLs.

See Also

https://www.consul.io/docs/internals/security.html

https://www.consul.io/api/acl.html

Plugin Details

Severity: High

ID: 111351

File Name: hashicorp_consul_web_api.nasl

Version: 1.5

Type: remote

Family: CGI abuses

Published: 7/26/2018

Updated: 9/2/2020

Supported Sensors: Nessus

Risk Information

CVSS Score Rationale: Nvd has no score for this cve. tenable research analyzed the issue and assigned one.

CVSS v2

Risk Factor: High

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS Score Source: manual

CVSS v3

Risk Factor: High

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:hashicorp:consul