Fulton Byrne

**Name of the Vulnerable Software and Affected Versions** HashiCorp Consul Template versions 0.27.2 and earlier, 0.28.2 and earlier, 0.29.1 and earlier **Description** The issue concerns the potential exposure of Vault secrets in error messages returned by the `*template.Template.Execute` method when a template using Vault secret contents is used incorrectly. This could lead to the revelation of sensitive information in logs or error reports. The problem arises when invalid templates are used, causing the method to inadvertently include Vault secrets in the error string. **Recommendations** For HashiCorp Consul Template versions 0.27.2 and earlier, update to version 0.27.3 or later. For HashiCorp Consul Template versions 0.28.2 and earlier, update to version 0.28.3 or later. For HashiCorp Consul Template versions 0.29.1 and earlier, update to version 0.29.2 or later.