Add reference for CVE-2021-38698/consul

author: Salvatore Bonaccorso <carnil@debian.org> 2021-10-15 21:54:23 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2021-10-15 21:54:23 +0200
commit: 706cb732fe90da4f85656adfc85915f1fd07f319 (patch)
tree: 2040842fa23cff852aed3fb7960dc9be7421da90
parent: 95ed5e49d048391657c0ac0883f78bbde26bf9e7 (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index e70a8373d4..680cfa9f8c 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -10046,6 +10046,7 @@ CVE-2021-38699 (TastyIgniter 3.0.7 allows XSS via /account, /reservation, /admin
 CVE-2021-38698 (HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allow ...)
 	- consul <unfixed>
 	NOTE: https://discuss.hashicorp.com/t/hcsec-2021-24-consul-missing-authorization-check-on-txn-apply-endpoint/29026
+	NOTE: https://github.com/hashicorp/consul/commit/747844bad6410091f2c6e961216c0c5fc285a44d (v1.8.15)
 CVE-2021-38697
 	RESERVED
 CVE-2021-38696
author	Salvatore Bonaccorso <carnil@debian.org>	2021-10-15 21:54:23 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2021-10-15 21:54:23 +0200
commit	706cb732fe90da4f85656adfc85915f1fd07f319 (patch)
tree	2040842fa23cff852aed3fb7960dc9be7421da90
parent	95ed5e49d048391657c0ac0883f78bbde26bf9e7 (diff)