CVE-2025-11374

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Consul versions prior to 1.22.0 Consul Enterprise versions prior to 1.22.0 Consul Enterprise version 1.21.6 Consul Enterprise version 1.20.8 Consul Enterprise version 1.18.12

Description The key/value endpoint in Consul and Consul Enterprise is susceptible to a denial of service (DoS) condition. This is caused by improper validation of the Content Length header.

Recommendations Update to Consul Community Edition 1.22.0 or later. Update to Consul Enterprise 1.22.0 or later. Update to Consul Enterprise 1.21.6. Update to Consul Enterprise 1.20.8. Update to Consul Enterprise 1.18.12.

Fix

DoS

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

BDU:2025-15597

BIT-CONSUL-2025-11374

CVE-2025-11374

GHSA-7G3R-8C6V-HFMR

GO-2025-4081

OPENSUSE-SU-2025:15710-1

Affected Products

Hashicorp Consul

Hashicorp Consul Enterprise

Debian

Red Os

CVE-2025-11374

Weakness Enumeration

Related Identifiers

Affected Products

References · 95