CVE-2022-40716

Name of the Vulnerable Software and Affected Versions HashiCorp Consul and Consul Enterprise versions prior to 1.11.9, 1.12.5, and 1.13.2

Description The issue concerns HashiCorp Consul and Consul Enterprise, where versions prior to 1.11.9, 1.12.5, and 1.13.2 do not check for multiple SAN URI values in a Certificate Signing Request (CSR) on the internal RPC endpoint. This enables an attacker to leverage privileged access and bypass service mesh intentions by sending a specially crafted CSR directly to Consul's internal server agent RPC endpoint, including multiple SAN URI values with additional service names.

Recommendations For versions prior to 1.11.9, update to version 1.11.9 or later. For versions prior to 1.12.5, update to version 1.12.5 or later. For versions prior to 1.13.2, update to version 1.13.2 or later. As a temporary workaround, consider restricting access to the internal RPC endpoint to minimize the risk of exploitation.